In this episode of the Cuick 10 Podcast, Derek White, Chief Operating Officer of Cuick Trac, is joined by Rachel Bassford, CUI Consultant at DEFCERT, to explore how organizations should approach identifying Controlled Unclassified Information (CUI).

Rachel explains why companies often jump straight into technology decisions without fully understanding their scope—and how that leads to wasted time, unnecessary cost, and increased risk. She outlines a structured approach that starts with understanding contracts, document markings, and data flow before making any compliance investments.

This episode provides practical guidance for organizations trying to answer one of the most important questions in CMMC: What do we actually need to protect?

In this episode of the Cuick 10 Podcast, Derek White, Chief Operating Officer of Cuick Trac, is joined by Carter Schoenberg, Vice President - Cybersecurity & Chief Cybersecurity Officer at SoundWay Consulting Inc., to discuss how the CMMC ecosystem is evolving now that regulatory requirements are becoming enforceable.

Carter shares firsthand insights from conducting assessments as a C3PAO, including how demand has shifted dramatically following key rulemaking milestones. The conversation explores the growing urgency among contractors, common misunderstandings about timelines, and the variability organizations are encountering in early assessments.

They also break down why many companies are still underprepared, the importance of realistic expectations, and what lessons from the front lines can help organizations better navigate the path to certification.

Tune in for a candid discussion on what’s changing in CMMC—and what it means for contractors moving forward.

In this episode of the Cuick 10 Podcast, Derek White, Chief Operating Officer of Cuick Trac, is joined by Alex Major, Partner & Co-Leader of the Government Contracts and Global Trade Group at McCarter & English, to discuss the challenges organizations face when identifying Controlled Unclassified Information (CUI).

Alex explains why CUI identification has become one of the most critical components of CMMC compliance and how confusion across government agencies, prime contractors, and suppliers creates risk throughout the Defense Industrial Base. The conversation explores how contractors should approach CUI policies, what role supply chain partners play in CUI flowdown, and why organizations must clearly understand what information they are required to protect.

Tune in for practical insights on navigating CUI identification and strengthening compliance across the supply chain.

To kick off Season 3, Derek White, COO of Cuick Trac, sits down with Kyle Lai, President & CISO at KLC Consulting, to discuss what makes someone truly effective in the CMMC consulting space. Kyle brings unique perspective as both an experienced assessor and a trusted advisor to organizations navigating DFARS, NIST 800-171, and CMMC compliance.

In this episode, they explore what separates technical know-how from true client impact—from soft skills like listening and empathy to real-life stories of consulting gone wrong (and right).

In this episode of the Cuick 10 Podcast, Derek White, Chief Operating Officer of Cuick Trac, is joined by James Harper, CEO at Quatronics, to break down FIPS encryption, validated crypto modules, and how governance underpins both CMMC compliance and long-term company growth.

James shares real-world examples of where small businesses stumble—from improper data mapping to lack of documented roles—and explains how CMMC can be a catalyst for sustainable scaling. If you’ve ever asked, “Do I really need FIPS validated equipment?” or struggled to track CUI across your team, this one’s for you.

In this episode of the Cuick 10 Podcast, Derek White, Chief Operating Officer of Cuick Trac, sits down with Jeff Smedley, retired CIO and CMMC strategy consultant, to explore how CMMC can go beyond compliance to drive organizational value.

Jeff shares how his company achieved a perfect assessment score and leveraged CMMC to unlock board alignment, private equity support, and a billion-dollar exit. From cultural transformation to financial metrics, this conversation reframes CMMC as a growth opportunity—not just a mandate.

In this episode of the Cuick 10 Podcast, Derek White, Chief Operating Officer of Cuick Trac, is joined by Brad Taylor, Senior Information Security Consultant at Foregenix, to explore what goes into a successful CMMC assessment from the assessor’s perspective. Brad shares insights from a recent real-world engagement, including how strong inheritance documentation, pre-assessment reviews, and clear traceability helped one OSC complete their assessment in under two days.

This episode is full of practical tips for preparing your environment, aligning your SSP and policies, and ensuring your team is ready to show up informed and confident.

In this episode of the Cuick 10 Podcast, Derek White, Chief Operating Officer of Cuick Trac, is joined by Heather Siemens, CEO of iFortress, to explore the growing call for standardization across federal cybersecurity frameworks — particularly for contractors serving both defense and energy sectors.

Heather shares lessons from her background in NERC compliance, the challenge of overlapping frameworks like NIST SP 800-171 and NIST 800-161, and what needs to happen for agencies like DoD, DOE, and DHS to speak a common cybersecurity language.