Aligning Your Security Stack with CMMC Level 2

June 23, 2026 at 11am MT

CMMC Level 2 compliance isn't a checkbox. It's 110 practices spread across 14 domains, and the responsibility for meeting them doesn't live in one place. It's split between the end customer, the MSP, and the security platform provider, and assessors expect each party to know exactly where their accountability begins and ends.

When that picture isn't clear going into an assessment, the gaps show up fast.

Leave this session with a clear understanding of:

How shared responsibility is divided across the customer, the MSP, and the platform provider

Which of the 110 CMMC Level 2 practices Todyl supports and/or augments and how

What you still need to own and where the documentation must come from you

Event Details

Walk away with a working map of your CMMC posture: what Todyl covers, what your team is responsible for, and what an assessment-ready program requires.

Why compliance responsibility cannot be outsourced.

How Todyl's SIEM supports 40+ CMMC Level 2 practices.

What Endpoint Security contributes to your evidence record.

How MXDR turns controls into audit-ready evidence.

Why GRC is the demonstration layer assessors are looking at.

A clear accountability map you can take back to your team.

‍

Speakers

Brian Guenther, CISSP

President

Exceed Cybersecurity & I.T. Services

Andrew Scott, CISSP, CRISC

Field CISO

Todyl

Stay on the Cutting Edge of Security

Subscribe to our newsletter to get our latest insights.

Related Content

AI-Enabled Threats: What AI-Ready Defense Looks Like

Penetration Testing & Incident Response for Your MSPs Prospects and Clients

The CIRCIA Clock Is Ticking: Are You Ready for the May 2026 Deadline?

In this webinar we explore the CIRCIA Final Rule—what it requires, who it covers, and what MSPs and critical infrastructure organizations need to have in place before enforcement begins.