The CMMC Pause: What Defense Contractors Need to Know

Get expert answers to the top questions about the CMMC Phase 2 pause and learn what defense contractors should do next to stay compliant.

DATE

20 JUL 2026

TIME

9:00am PT | 12:00pm ET

Register today!

By completing this form, I consent to receiving calls, texts and/or emails from CyberSheath regarding services and programs.

Emil Sayegh - CyberSheath CEO

"We believe this period should be viewed as an opportunity to strengthen cybersecurity, not delay it. Organizations that continue improving governance, reducing technical debt, maturing their cybersecurity programs, and building operational resilience will be better positioned regardless of how the Department ultimately evolves the Cybersecurity Maturity Model Certification (CMMC) framework.

- Emil Sayegh, CyberSheath CEO

CMMC Phase 2 Pause: Your Top Questions Answered

The DOD has paused CMMC Phase 2. Now what?

The Department of Defense's decision to pause CMMC Phase 2 has created uncertainty across the Defense Industrial Base. Does this change your cybersecurity obligations? Should you adjust your compliance strategy? What does it mean for future contracts?

Join our cybersecurity experts as we answer the most frequently asked questions we're hearing from defense contractors and provide practical guidance on what organizations should be doing now.

What You'll Learn:

During this webinar, we'll cover questions including:

  • What exactly did the DoD pause?
  • What cybersecurity requirements remain in effect?
  • Does NIST SP 800-171 still apply?
  • What should organizations do about ongoing compliance efforts?
  • How does the pause impact current and future DoD contracts?
  • What should primes and subcontractors expect moving forward?
  • What steps can organizations take now to strengthen their cybersecurity posture?

Who Should Attend? 

  • Defense contractors
  • Defense Industrial Base (DIB) suppliers
  • Business owners and executives
  • IT and cybersecurity leaders
  • Compliance managers
  • Contracts and program managers

Next Steps:

Don't let uncertainty put your organization at risk. Get clear, practical answers to the questions that matter most and learn how to stay focused on cybersecurity compliance while the DOD evaluates the future of CMMC. Bring your questions. We'll reserve time for a live Q&A so you can get answers from our experts.

Emil Sayegh - CyberSheath CEO

Emil Sayegh

CyberSheath CEO

Emil Sayegh brings more than 20 years of executive experience scaling managed service providers and cybersecurity organizations to CyberSheath, where he serves as Chief Executive Officer. Most recently, he served as Chief Executive Officer of multiple private equity-backed companies, including Ntirety, Hostway Services, and Codero Hosting, where he led successful growth strategies and built comprehensive cybersecurity and compliance platforms. He has developed channel partnerships, expanded market reach, and built high-performing teams focused on customer success.

Casey Lang, VP of Compliance

Casey Lang

CyberSheath SVP of Compliance

Casey Lang has over ten years of experience in cybersecurity, business resilience, and information technology from various roles in industries such as defense, healthcare, and retail. He has expertise in CMMC compliance, security program development and assessment, and has extensive experience in strategically planning security and business continuity programs based upon internationally recognized standards of practice from NIST, ISO, FISMA, and the PCI-SSC.

Scott Whitehouse, CyberSheath VP of Service Delivery

Scott Whitehouse

CyberSheath VP of Service Delivery

Scott Whitehouse has more than 15 years of experience across private industry and the Defense Industrial Base, Scott is a recognized thought leader in the CMMC ecosystem. He began working with CMMC in 2019, well before the framework was officially published, and has since helped prepare hundreds of Organizations Seeking Certification (OSCs) for successful assessments, including multiple Certified Third-Party Assessment Organizations (C3PAOs). Scott's deep expertise and proven track record enable defense contractors to navigate complex cybersecurity compliance requirements with confidence and efficiency.