State of CMMC: C3PAO Insights on Certification Trends & Readiness
Join us for an exclusive panel discussion exploring the findings from Alluvionic’s CMMC C3PAO Insights Survey, conducted to surface trends, challenges, and best practices across the CMMC ecosystem.
- Tuesday, August 26, 2025
- 12:00 PM – 1:00 PM ET
- Online event
Watch the Recording
Read the Recap
State of CMMC 2025: What C3PAOs Are Saying About Certification Readiness
The Cybersecurity Maturity Model Certification (CMMC) 2.0 Final Rule is here, and contractors across the defense industrial base (DIB) are preparing for what comes next. But how ready are organizations, really? To find out, Alluvionic surveyed Certified Third-Party Assessor Organizations (C3PAOs) actively conducting Level 2 assessments. These professionals are on
Missed this one?
We’ve got more coming. Be the first to know.
Moderated by our EVP of Commercial Services, this session brings together Alluvionic’s internal cybersecurity experts and two leading C3PAO partners to analyze key survey results, offer expert commentary, and answer your burning questions.
Attendees will gain an inside look into what’s happening on the ground as C3PAOs conduct Level 2 assessments post-final rule. Our report, set to be released in conjunction with the webinar, provides critical benchmarking data for OSCs, RPOs, MSPs, and others preparing for certification.
Moderated by:
- Elizabeth (Lizi) Huy, EVP of Commercial Services, Alluvionic, Inc. Cyber AB Registered Practitioner (RP)
Panel will include:
- Katelyn Posego, IT Manager / Cybersecurity Analyst, RPO, Alluvionic, Inc.
- Dharius Carr, Pricing Analyst, C3PAO, ArCybr
- Tom Tollerton, CISSP, CMMC-CA, C3PAO, Forvis Mazars
Featured Speakers
Elizabeth “Lizi” Huy
EVP of Commercial Services, Alluvionic, Inc. | Cyber-AB Registered Practitioner (RP)
Leads cybersecurity compliance strategy and client engagements, helping organizations prepare for CMMC and navigate complex requirements. Lizi will be moderating this webinar.
Katelyn Posego
IT Manager, Alluvionic, Inc.
Cybersecurity and compliance leader with 15 years of experience spanning military, federal, and commercial environments, supporting CMMC, NIST CSF, and SOC 2 engagements nationwide.
Tom Tollerton
Principal, IT Risk and Compliance, Forvis Mazars
Tom has more than 20 years of experience in the cybersecurity industry and leads the firm’s cybersecurity compliance services. He specializes in large enterprise cybersecurity assessment and consulting, and strategic compliance program management. Tom is leader of the firm’s CMMC advisory team and is the firm’s lead PCI Qualified Security Assessor (PCI QSA). His clients include Fortune 1000 organizations in the tech services, retail, insurance, federal and defense contractor industries. Tom has been published in national publications and is a regular speaker on cybersecurity and privacy topics at various industry events.
Dharius Carr
Pricing Analyst, ArCybr
Dharius Carr is a Pricing Analyst and CMMC Customer Liaison with over five years of experience in pricing strategy and client engagement. He graduated Summa Cum Laude from the University of North Florida, where he also received the Managerial Excellence Award. In his current role, Dharius supports clients throughout the CMMC pre-preparation process— guiding them from the initial consultation to scheduling their assessments—while applying his expertise to provide value and informed decision making.
Set Your Business Up For Success
The race to compliance has already begun—don’t fall behind. Alluvionic’s experts provide cybersecurity support and focused change management. We minimize disruptions, ensure smooth adoption, and set your business up for success.
Read The Latest CMMC NEWS
Webinar Recap: CMMC False Starts and the Readiness Gaps Organizations Keep Missing
CMMC conversations across the Defense Industrial Base have entered a new phase. Certification requirements are now formally established, and organizations are currently grappling with timing, operational readiness, assessor availability, and
2026 GAO Report Finds Critical Concerns with CMMC Ecosystem
The Department of Defense’s Cybersecurity Maturity Model Certification (CMMC) program is officially underway. Requirements are now appearing in contracts, and the phased rollout is accelerating across the defense industrial base
Webinar Recap: Your CMMC Certification Playbook (and Pitfalls to Avoid)
For contractors across the defense industrial base, the CMMC timeline is moving faster than expected. In the recent webinar, “Your CMMC Certification Playbook (and Pitfalls to Avoid),” the presenters discussed