Resources

XRAMP – Security Assessments Evolved

Point in time security assessments have been around a long time. Do they provide the level of assurance that business, downstream customers, and the government expects? Is it enough in the digital world that is constantly evolving? The concept of continuous assurance isn’t new, but limited progress has been made in terms of the way we manage risk. This traditional assessment model will not change overnight, but there absolutely has to be a better to way improve it.

Blog

What to Know Regarding the Updated DISA DoD CC SRG

For Cloud Services Providers (CSPs) looking to achieve Defense Information Systems Agency (DISA) Department of Defense (DoD) Cloud Computing Security Requirements Guide (CC SRG) Impact Level 2 (IL2), Impact Level 4 (IL4), Impact Level 5 (IL5), or Impact Level 6 (IL6) authorization for a Cloud Service Offering (CSO), implementing and following the security requirements guides are a must to ensure effective implementation of DISA requirements.

Read More
Blog

Multi-factor Authentication in AWS

By understanding and successfully enforcing Multi-factor authentification mechanisms, organizations can enhance their security posture and meet compliance requirements, particularly those mandated by FedRAMP.

Read More
Blog

DNSSEC and FedRAMP Requirements

In this blog post, we delve into the world of DNS Security Extensions (DNSSEC) and how you can implement them effectively with AWS Route 53 to fortify your AWS infrastructure and meet FedRAMP requirements.

Read More
Blog

Red Team FedRAMP Introduction

With the transition to NIST SP 800-53 rev 5 comes the requirement for more proactive, adversarial testing for those wishing to meet the moderate and high accreditation standard. Admittedly, the control as written leaves this requirement open-ended and in need of some interpretation to properly apply in the FedRAMP context.

Read More

Contact us to discuss your cyber and cloud business needs. We’re happy to share our insights and work with you as your business evolves.