Ms. Stacy Bostjanick is a member of the Senior Executive Service and serves as the Chief Defense Industrial Base Cybersecurity, Deputy Chief Information Officer for Cybersecurity (DCIO(CS)), Office of the Chief Information Officer. In this position, she serves as the focal point within the DoD CIO to implement the Cybersecurity Maturity Model Certification (CMMC) program across the Defense Industrial Base (DIB).

As the CMMC Director, Ms. Bostjanick is responsible for shepherding this critical program though the Code of Federal Regulation System rulemaking process for both the CFR 32 and 48 and ultimately implementing the program across the more than 220,000 companies that make up the DIB. This includes collaborating across the Federal Government with partners such as the Department of Homeland Security and the other members of the Federal Acquisition Security Council, to standardize this process and truly federalize it. In this role, she also directs the Department’s efforts to educate DIB partners on programatic requirements and ensures that DoD implements risk information sharing though the program’s execution. Additionally, Ms. Bostjanick is responsible for ensuring the Defense Acquisition community is trained and capable of including these requirements in their Programs and Acquisitions.

A regulatory attorney who focuses his practice on a wide range of government contract matters, including bid protests, claims and disputes, and compliance and sub-prime issues, Eric has extensive experience in government contract litigation. He has successfully prosecuted and intervened in numerous bid protests before the US Court of Federal Claims (USCFC), US Government Accountability Office (GAO), boards of contract appeals, and other federal agencies. He counsels clients regarding the Service Contract Act (SCA), Davis-Bacon Act and other labor issues, domestic preferences, export controls, cybersecurity, subcontracting and teaming agreements, and compliance with the Federal Acquisition Regulation (FAR) and other agency regulatory requirements, such as the Defense Federal Acquisition Supplement (DFARS). Eric also represents contractors in investigations and suspension and debarment proceedings, as well as in federal and state courts.

Besides helping government contractors through contracting compliance and litigation issues, Eric provides strategic and practical advice with matters connected to cybersecurity and privacy in the government contracting space. Among other things, Eric counsels clients on obligations in the FAR (such as FAR 52.204-21) and on agency-specific requirements from the Department of Defense (DOD), Department of Homeland Security (DHS), Department of Veterans Affairs (VA), and others, including the Cybersecurity Maturity Model Certification (CMMC) program and Federal Risk and Authorization Management Program (FedRAMP). Eric also guides companies through cybersecurity incident responses and litigation, including potential ramifications under the False Claims Act (FCA).

Eric is a government contracting thought leader, having appeared on Government Matters and Federal News Network, and has featured at conferences to provide his insight with respect to emerging issues.

CMMC Pro

An experienced leader and workforce developer, specializing in risk assessments, mitigation development, compliance, and security. I build bridges between information technology and business functions to identify and address risk while enabling critical business functions . With over 25 years managing teams and projects across three continents, I help leaders make informed risk decisions and ensure stake holders equity is protected.

(FedRAMP, CMMC, SOC, ISO 27001, PCI/DSS/ HIPAA, NISFT CSF, CIS, FTC Safeguards, Cyber Insurance)
C Safeguards, Cyber Insurance)

John A. Ellis is currently the Director for DCMA’s Software Division, responsible for the Policy, Training, and Tools used by the Agency’s software professionals in the conduct of their software surveillance activities, including the application of cybersecurity contract requirements and policies.

Mr. Ellis, a retired Army Colonel, served on active duty for more than 30 years. Commissioned a second lieutenant in the Field Artillery in May 1985 and becoming a member of the Army Acquisition Corps in 1995, he served in a variety of assignments until his retirement 1 June 2015.

John held assignments both stateside and abroad. Mr. Ellis’ DCMA experience began as the Commander of the Future Combat Systems (FCS)/Army Modernization Programs (AMP) contract management office in St. Louis, MO and he culminated his active duty career as DCMA’s Central Region Commander.