Panel Discussion: CMMC and Cybersecurity
April 18, 2023 | Q&A by Maribel HernandezEstimated reading time: 1 minute

The electronics manufacturing sector faces unique challenges when it comes to cybersecurity, given the highly sensitive nature of the information that it handles. With the introduction of the Cybersecurity Maturity Model Certification (CMMC) framework, businesses will soon be required to meet specific, more stringent cybersecurity standards to bid on Department of Defense contracts. This has made cybersecurity hygiene and CMMC compliance more important than ever for businesses in the sector, as non-compliance can result in lost revenue and reputational damage.
At the recent EMS Leadership Summit, held during IPC APEX EXPO 2023 in January, summit organizers arrange a panel discussion with three industry experts. The panel, moderated by Maribel Hernandez, followed a Question & Answer format. Panelists included: Vijay Takanti, Joaquin Hernandez, and Allen Anderson and discussed the details and intricacies of CMMC compliance, and how it can affect a business. The experts shared their insights into the challenges that businesses in the sector are likely to face, the specific requirements tied to CMMC compliance, and the steps that businesses can take to ensure that they are adequately protected and able to achieve compliance within the framework. This article, compiled by the participants, summarizes portions of the discussion from the summit event.
What’s the difference between cybersecurity and CMMC compliance?
Joaquin Hernandez: Cybersecurity is the practice of protecting computer systems, networks, and data from unauthorized access, theft, and damage. It's a broad concept that encompasses many different tactics, techniques, and procedures. The CMMC compliance, on the other hand, refers to the requirements set forth by the DoD to ensure that contractors are meeting a minimum level of cybersecurity readiness before being awarded contracts.
In other words, cybersecurity is the foundation upon which compliance is built. A company must have a solid cybersecurity posture that extends to cover compliance safeguards in order to achieve compliance. While CMMC compliance is a specific set of requirements that a company must meet to do business with the DoD, cybersecurity is a broader and ongoing practice that should be applied to all aspects of a company's operations to protect against cyber threats.
To read this entire panel discussion, which appeared in the April 2023 issue of SMT007 Magazine, click here.
Suggested Items
The Global Electronics Association Releases IPC-8911: First-Ever Conductive Yarn Standard for E-Textile Application
07/02/2025 | Global Electronics AssociationThe Global Electronics Association announces the release of IPC-8911, Requirements for Conductive Yarns for E-Textiles Applications. This first-of-its-kind global standard establishes a clear framework for classifying, designating, and qualifying conductive yarns—helping to address longstanding challenges in supply chain communication, product testing, and material selection within the growing e-textiles industry.
IPC-CFX, 2.0: How to Use the QPL Effectively
07/02/2025 | Chris Jorgensen, Global Electronics AssociationIn part one of this series, we discussed the new features in CFX Version 2.0 and their implications for improved inter-machine communication. But what about bringing this new functionality to the shop floor? The IPC-CFX-2591 QPL is a powerful technical resource for manufacturers seeking CFX-enabled equipment. The Qualified Product List (QPL) helps streamline equipment selection by listing models verified for CFX compliance through a robust third-party virtual qualification process.
Advancing Aerospace Excellence: Emerald’s Medford Team Earns Space Addendum Certification
06/30/2025 | Emerald TechnologiesWe’re thrilled to announce a major achievement from our Medford, Oregon facility. Andy Abrigo has officially earned her credentials as a Certified IPC Trainer (CIT) under the IPC J-STD-001 Space Addendum, the leading industry standard for space and military-grade electronics manufacturing.
Magnalytix and Foresite to Host Technical Webinar on SIR Testing and Functional Reliability
06/26/2025 | MAGNALYTIXMagnalytix, in collaboration with Foresite Inc., is pleased to announce an upcoming one-hour Webinar Workshop titled “Comparing SIR IPC B-52 to Umpire 41 Functional & SIR Test Method.” This session will be held on July 24, 2025, and is open to professionals in electronics manufacturing, reliability engineering, and process development seeking insights into new testing standards for climatic reliability.
IPC Rebrands as Global Electronics Association: Interview With Dr. John W. Mitchell
06/22/2025 | Marcy LaRont, I-Connect007Today, following a major announcement, IPC is embracing the rapid advancement of technology with a bold decision to change its name to the Global Electronics Association. This name more accurately reflects the full breadth of its work and the modern realities of electronics manufacturing. In this exclusive interview, Global Electronics Association President and CEO Dr. John W. Mitchell shares the story behind the rebrand: Why now, what it means for the industry, and how it aligns with the organization’s mission.