Cuick 10

Hosted by Derek White

Technology

Website RSS feed

Episodes

Latest episode

Mar 2026

Language

About the show

The Cuick 10 Podcast, hosted by Cuick Trac, covers all things cybersecurity, from all different perspectives and personalities across the FedCon and Cyber Defense industry. All in 10 (ish) minutes.

Listen to episodes

60 recent

March 24, 202613 min

Defining CUI Before You Spend a Dollar

In this episode of the Cuick 10 Podcast, Derek White, Chief Operating Officer of Cuick Trac, is joined by Rachel Bassford, CUI Consultant at DEFCERT, to explore how organizations should approach identifying Controlled Unclassified Information (CUI).Rachel explains why companies often jump straight into technology decisions without fully understanding their scope—and how that leads to wasted time, unnecessary cost, and increased risk. She outlines a structured approach that starts with understanding contracts, document markings, and data flow before making any compliance investments.This episode provides practical guidance for organizations trying to answer one of the most important questions in CMMC: What do we actually need to protect?

March 17, 202618 min

CMMC Is Here: What’s Changing Now

In this episode of the Cuick 10 Podcast, Derek White, Chief Operating Officer of Cuick Trac, is joined by Carter Schoenberg, Vice President - Cybersecurity & Chief Cybersecurity Officer at SoundWay Consulting Inc., to discuss how the CMMC ecosystem is evolving now that regulatory requirements are becoming enforceable.Carter shares firsthand insights from conducting assessments as a C3PAO, including how demand has shifted dramatically following key rulemaking milestones. The conversation explores the growing urgency among contractors, common misunderstandings about timelines, and the variability organizations are encountering in early assessments.They also break down why many companies are still underprepared, the importance of realistic expectations, and what lessons from the front lines can help organizations better navigate the path to certification.Tune in for a candid discussion on what’s changing in CMMC—and what it means for contractors moving forward.

March 17, 202612 min

Identifying CUI in the Supply Chain

In this episode of the Cuick 10 Podcast, Derek White, Chief Operating Officer of Cuick Trac, is joined by Alex Major, Partner & Co-Leader of the Government Contracts and Global Trade Group at McCarter & English, to discuss the challenges organizations face when identifying Controlled Unclassified Information (CUI).Alex explains why CUI identification has become one of the most critical components of CMMC compliance and how confusion across government agencies, prime contractors, and suppliers creates risk throughout the Defense Industrial Base. The conversation explores how contractors should approach CUI policies, what role supply chain partners play in CUI flowdown, and why organizations must clearly understand what information they are required to protect.Tune in for practical insights on navigating CUI identification and strengthening compliance across the supply chain.

February 6, 202631 min

What Makes a Great CMMC Consultant

To kick off Season 3, Derek White, COO of Cuick Trac, sits down with Kyle Lai, President & CISO at KLC Consulting, to discuss what makes someone truly effective in the CMMC consulting space. Kyle brings unique perspective as both an experienced assessor and a trusted advisor to organizations navigating DFARS, NIST 800-171, and CMMC compliance.In this episode, they explore what separates technical know-how from true client impact—from soft skills like listening and empathy to real-life stories of consulting gone wrong (and right).

December 24, 202512 min

FIPS Encryption, Governance & Growth Strategy

In this episode of the Cuick 10 Podcast, Derek White, Chief Operating Officer of Cuick Trac, is joined by James Harper, CEO at Quatronics, to break down FIPS encryption, validated crypto modules, and how governance underpins both CMMC compliance and long-term company growth.James shares real-world examples of where small businesses stumble—from improper data mapping to lack of documented roles—and explains how CMMC can be a catalyst for sustainable scaling. If you’ve ever asked, “Do I really need FIPS validated equipment?” or struggled to track CUI across your team, this one’s for you.

December 24, 20258 min

CMMC as a Value Multiplier

In this episode of the Cuick 10 Podcast, Derek White, Chief Operating Officer of Cuick Trac, sits down with Jeff Smedley, retired CIO and CMMC strategy consultant, to explore how CMMC can go beyond compliance to drive organizational value.Jeff shares how his company achieved a perfect assessment score and leveraged CMMC to unlock board alignment, private equity support, and a billion-dollar exit. From cultural transformation to financial metrics, this conversation reframes CMMC as a growth opportunity—not just a mandate.

December 16, 202511 min

What CMMC Assessors Want You to Know

In this episode of the Cuick 10 Podcast, Derek White, Chief Operating Officer of Cuick Trac, is joined by Brad Taylor, Senior Information Security Consultant at Foregenix, to explore what goes into a successful CMMC assessment from the assessor’s perspective. Brad shares insights from a recent real-world engagement, including how strong inheritance documentation, pre-assessment reviews, and clear traceability helped one OSC complete their assessment in under two days.This episode is full of practical tips for preparing your environment, aligning your SSP and policies, and ensuring your team is ready to show up informed and confident.

December 9, 20258 min

Can We Standardize Cybersecurity Across Agencies?

In this episode of the Cuick 10 Podcast, Derek White, Chief Operating Officer of Cuick Trac, is joined by Heather Siemens, CEO of iFortress, to explore the growing call for standardization across federal cybersecurity frameworks — particularly for contractors serving both defense and energy sectors.Heather shares lessons from her background in NERC compliance, the challenge of overlapping frameworks like NIST SP 800-171 and NIST 800-161, and what needs to happen for agencies like DoD, DOE, and DHS to speak a common cybersecurity language.

November 25, 20257 min

Getting Executive Buy-In for CMMC Success

In this episode of the Cuick 10 Podcast, Derek White, Chief Operating Officer of Cuick Trac, is joined by Nancy Laney, CEO of Peak Complyance, to discuss why executive leadership buy-in is essential for successful CMMC compliance.Nancy shares insights into building a cyber-aware culture, shifting compliance ownership beyond IT, and the growing importance of executive affirmations—even at CMMC Level 1. She also outlines the risks of relying on a single point of failure, the importance of documentation for sustainability, and how coaching and tools can help organizations operationalize compliance.

November 4, 202512 min

FIPS Encryption & Governance: CMMC Compliance Without the Chaos

In this episode of the Cuick 10 Podcast, Derek White, COO of Cuick Trac, is joined by James Harper, CEO of Quatronics, to explore two critical — and often misunderstood — areas of cybersecurity compliance: FIPS encryption and corporate governance.James shares practical insights on what FIPS-validated encryption actually means (and doesn’t mean), where it’s required, and how misconceptions around equipment can lead to costly and unnecessary decisions. More importantly, he makes the case that governance — not just tech — is the backbone of scalable, effective CMMC compliance.Whether you're confused about encryption, overwhelmed by data flows, or wondering how to grow securely, this episode offers a down-to-earth look at getting CMMC right.