Compliance

Getting started with DFARS and FISMA compliance

There’s an easier way to accelerate compliance If you’re reading this blog, you’re probably already aware of how difficult it...

It’s past time we modernized security hardening procedures

Security baseline automation of STIG and CIS controls with Ansible is improving resource management and compliance With an ever-growing workload...

Even with automation, security baselines like STIG or CIS remain a challenge to manage. But there is hope.

Ever ask a sysadmin what they find most tedious about their job? If they’re being honest, keeping up with security...

A+: AMI’s, Automation & AWS

A few weeks ago, I attended AWS re:Invent 2016 with nine of my colleagues. If you have never been, re:Invent is...

The AWS Shared Security Model – Part II: A Step Towards FedRAMP Compliance

If you have a cloud service offering that you are trying to market to the Federal Government, chances are you’ve...

Stop By Booth 118 @ AWS re:Invent and Speak to Our Team of Cybersecurity Experts

The AWS Shared Responsibility Model: Part 1 – Security in the Cloud

Cloud Service Providers (CSP) offer a range of infrastructure, platforms, and software for customers to consume. Whether you are looking...

Choosing a 3PAO: FedRAMP, Cybersecurity & Cloud Expertise are Vital

As a direct result of the Cloud First policy, the Federal Government is spending more time, money, and effort on...

FedRAMP Compliance – Is it worth it?

If you are a company with a cloud service, there are likely quite a few questions you are asking yourself...

Whistleblowers

The other day I read this article over at TaoSecurity which was a follow-up to a post from a couple weeks...

Tweet of the Year for 2011: What’s Wrong With Information Security

Last week, I read what I expect to be the most intelligent tweet of 2011.  A member of the OWASP...

NEI Cyber Security Implementation Workshop

Greetings, and happy 2011. It has been entirely too long since we’ve posted an update. In spite of that, I...