Nancy Laney, CyberAB RPA , Owner PEAK Complyance CyberAB RPO 

A CMMC Coaching Company , Inventors of IMPLEMENT CMMC  

Nancy Laney is President and Owner of PEAK Complyance in southern Oregon, a division of Laney ITC a CyberAB RPO. With over 30 years of expertise in compliance design and implementation, Nancy’s passion is bringing compliance realization within reach of the small to medium sized businesses in the defense industrial base. She is a CMMC Registered Professional-Advanced (RPA) and has professional certifications in Project Management (PMP), Healthcare Information and Management Systems (CPHIMS), and has implemented many certification standards including ITIL, HIPAA, CIS and NIST 800-53 & 800-171. 

Nancy's mission is to make the complex understandable and distill experience based, best practice possibilities to precisely what is needed for small to medium sized businesses.  To this end, she has invented the first CMMC Coaching program consisting of guided learning and active engagements aimed at both medium and small independent businesses seeking certification in the CMMC framework. Through her instructional videos, personal coaching, group coaching sessions, and with a proven suite of tools, compliance teams can get on the path to audit readiness immediately.

Prior to launching both her MSP, PEAK IT Security & Solutions, and PEAK Complyance, Nancy served as an IT vCIO Consultant, Corporate Regional IT Director, Program Manager, as well as New Construction IT Project Manager in healthcare related fields for national healthcare companies.  Her experience includes serving county government as the IT Director with a focus on implementing NIST 800-53 compliance and PCI DSS.

 Recent Presentation History:  
2023: Co-presented with Katie Arrington at CIC, 2023 CMMC Implementer's Conference (CIC 2023), University of San Diego. “Uncle Sam Needs YOU” - a call to action for owners of MSPs, MSSPs, etc.   
2024: CMMC Day, Washington DC, “Psychology of CMMC Implementation”
2024: Keynote for Mission Critical Service Provider track “Why do I Need Compliance – Modernizing Cyber and IT Offerings to Reduce Service Providers’ Risk”! At CIC, CMMC Implementer's Conference (CIC 2024) 
2023: Presentation: “Cyber Threats to IT & OT etc.”, at OREGON CYBER RESILIENCE SUMMIT 2023, Eugene, Oregon  
2022: Cybersecurity Specialist Panel Participant at Pacific NW Defense Coalition (PNDC) Cybersecurity Conference, Portland, Oregon. “Hear from our panel of experts to make sure your business is staying on top of your cybersecurity plan.” 
2022: Presentation on “Penetration Testing” at Oregon Association Government IT Management (OAGITM) Conference