As social engineering threats target defense contractors and CMMC compliance deadlines loom, contractors in the defense industrial base (DIB) face mounting pressure to secure their human vulnerabilities. With attackers increasingly exploiting people rather than technology, organizations need battle-tested expertise to defend against these sophisticated tactics, and CMMC CON, the longest-running CMMC event, aims to connect them with professionals who understand these threats firsthand.
CMMC CON 2025: Compliance Blueprint – Plan. Execute. Certify. will run Sept. 24-25, 2025, from 9 a.m. to 1 p.m. EDT. Rachel Tobac, renowned hacker and CEO of SocialProof Security, will deliver the keynote on the first day of the conference. She’ll break down recent cyber attacks in the news and how to defend against the latest hacking methods, even when criminals are using AI. Her tales from the field and live hacking demonstrations throughout the presentation are sure to keep you and your team “politely paranoid” to catch the next human hacker in the act.
Tobac’s expertise in social engineering defense and real-world penetration testing positions her perfectly to guide attendees through the human element of cyberattacks and defense strategies. She gained recognition in DEF CON’s Social Engineering Competition, establishing herself as a formidable authority in the field. As CEO of SocialProof Security, she helps organizations strengthen their security posture through targeted training and penetration testing focused on social engineering threats. Her service on the CISA Technical Advisory Council under Director Jen Easterly, coupled with her current role as Chair of the Board for Women in Security and Privacy (WISP), gives her a unique perspective on the challenges facing the DIB.
Beyond Tobac’s keynote, attendees can expect sessions from leading experts in the field, providing updates on compliance strategies, threat mitigation, legal insights, and practical steps for achieving and maintaining CMMC certification. These sessions aim to offer actionable insights into enhancing overall organizational cybersecurity posture and meeting Department of Defense requirements.
Don’t miss this chance to equip yourself and your organization with the insights needed to address the complex challenges of cybersecurity in the defense sector. Register for CMMC CON 2025 to gain invaluable knowledge on achieving CMMC compliance and enhancing your organization’s cybersecurity posture.