The first iteration of the Cybersecurity Maturity Model Certification program (CMMC 1.0) approached cybersecurity as an abstract set of rules that were largely removed from how security is practiced. The changes in CMMC 2.0 seem to be a direct response to the weaknesses of CMMC 1.0.
Michael Corn is the CISO of the University of California at San Diego where he manages the Security Office as well as the Identity and Access Management. His areas of interest include privacy, identity management, and cloud services. He has been an active speaker and author on security and privacy and has participated in numerous Educause and Internet2 initiatives. He is a member of the Internet2 NAOPag, a past co-chair of the Educause HEISC, a member of the REN-ISAC steering committee and the CMMC AB Academic Advisory Council. Prior to joining UCSD he was the CISO & CPO and Deputy CIO of Brandeis University and was formally the CISO and Chief Privacy and Security Officer of the University of Illinois at Urbana-Champaign. He is a graduate of the University of Colorado at Boulder and the University of Illinois at Urbana-Champaign
John O'Brien, EDUCAUSE CEO and President, talks with Mike Corn, CISO for the University of California San Diego, and Cheryl Washington, CISO, for the University of California Davis, about the increasing relevance of the Chief Information Security Officer role. Originally recorded on June 3, 2021.
Looking at cybersecurity as a career path can be intimidating, but many working in this field didn't start out with intentions to work in cybersecurity.