Welcome back to Mostly Compliant, the cybersecurity show for professionals with trust issues, hosted by Matt Bruggeman, Director of Federal GTM at A-LIGN.

In this episode, Matt is joined by Tony Bai, Chief Solutions Officer at RiskPoint and a seasoned expert in federal compliance frameworks. Together, they dive deep into the complexities of FedRAMP and its intersection with the DoD provisional authorization process for cloud service providers. Tony breaks down the nuances of impact levels, the additional controls required for DoD compliance, and the challenges of navigating FedRAMP equivalency.

The conversation also explores the relationship between FedRAMP, CMMC, and controlled unclassified information (CUI), offering practical insights for cloud service providers working with DoD agencies.

Listen to this episode on your favorite platform: lnk.to/X2VoDS

About Mostly Compliant: Hosted by Matt Bruggeman, Director of Federal GTM at A-LIGN, Mostly Compliant is a cybersecurity podcast that brings together experts from across the federal compliance landscape to discuss CMMC, FedRAMP, and other key topics shaping the industry.