Former DoD CMMC Leader Stacy Bostjanick Joins Teramis Advisory Board
Found this article helpful?
Share it with your network and spread the knowledge!

Teramis, a platform specializing in Controlled Unclassified Information (CUI) discovery, validation, and continuous monitoring, has appointed Stacy Bostjanick, former Chief of Defense Industrial Base (DIB) Cybersecurity within the Office of the Department of Defense Chief Information Officer, to its advisory board. The announcement comes as defense contractors intensify efforts to comply with the Cybersecurity Maturity Model Certification (CMMC) program.
Bostjanick brings more than three decades of federal acquisition, cybersecurity, and defense contracting experience to Teramis. During her government career, she played a pivotal role in the development and implementation of the CMMC program, which sets cybersecurity requirements for companies in the Defense Industrial Base. As Chief of DIB Cybersecurity, she served as the Department's focal point for implementing CMMC across more than 220,000 companies and led efforts to guide the program through federal rulemaking.
"Stacy's leadership has been instrumental in advancing cybersecurity across the Defense Industrial Base and helping organizations understand and navigate CMMC requirements," said Brandon Sessions, President of Teramis. "Her experience, insight, and perspective will be invaluable as Teramis continues to help defense contractors and compliance partners accurately identify, validate, and continuously monitor Controlled Unclassified Information across their environments."
Teramis was built to address the challenge of knowing where CUI resides, a persistent issue in CMMC compliance. The platform enables organizations to discover CUI across Microsoft 365, file shares, endpoints, email systems, and other repositories, producing defensible evidence for scoping, enclave design, assessment preparation, and ongoing compliance.
"One of the greatest challenges organizations face is obtaining accurate visibility into where sensitive information actually exists," said Bostjanick. "Effective cybersecurity and compliance programs depend on sound data and informed decisions. Teramis is helping organizations replace assumptions with evidence, which is increasingly important as CMMC requirements become operational across the Defense Industrial Base."
Before leading DIB cybersecurity initiatives, Bostjanick held senior acquisition and contracting leadership positions, including serving as Head of Contracting Activity for the Defense Intelligence Agency and as a Senior Contracting Officer supporting major missile defense programs. She managed billions of dollars in complex defense contracts throughout her federal career.
The appointment underscores the growing focus on CMMC compliance among defense contractors, who must demonstrate adherence to NIST SP 800-171 and CMMC requirements while reducing costs and minimizing assessment risk. Teramis is trusted by organizations supporting more than $10 billion in defense programs, according to the company. More information is available at www.teramis.us.
