Compliance

November 21, 2019
Getting started with DFARS and FISMA compliance

There’s an easier way to accelerate compliance If you’re reading this blog, you’re probably already aware of how difficult it...

Read More
November 5, 2019
It’s past time we modernized security hardening procedures

Security baseline automation of STIG and CIS controls with Ansible is improving resource management and compliance With an ever-growing workload...

Read More
May 15, 2019
Even with automation, security baselines like STIG or CIS remain a challenge to manage. But there is hope.

Ever ask a sysadmin what they find most tedious about their job? If they’re being honest, keeping up with security...

Read More
December 15, 2016
A+: AMI’s, Automation & AWS

A few weeks ago, I attended AWS re:Invent 2016 with nine of my colleagues. If you have never been, re:Invent is...

Read More
November 27, 2016
The AWS Shared Security Model – Part II: A Step Towards FedRAMP Compliance

If you have a cloud service offering that you are trying to market to the Federal Government, chances are you’ve...

Read More
November 24, 2016
Stop By Booth 118 @ AWS re:Invent and Speak to Our Team of Cybersecurity Experts

Read More
October 5, 2015
The AWS Shared Responsibility Model: Part 1 – Security in the Cloud

Cloud Service Providers (CSP) offer a range of infrastructure, platforms, and software for customers to consume. Whether you are looking...

Read More
June 23, 2015
Choosing a 3PAO: FedRAMP, Cybersecurity & Cloud Expertise are Vital

As a direct result of the Cloud First policy, the Federal Government is spending more time, money, and effort on...

Read More
April 7, 2015
FedRAMP Compliance – Is it worth it?

If you are a company with a cloud service, there are likely quite a few questions you are asking yourself...

Read More
May 25, 2012
Whistleblowers

The other day I read this article over at TaoSecurity which was a follow-up to a post from a couple weeks...

Read More
February 28, 2011
Tweet of the Year for 2011: What’s Wrong With Information Security

Last week, I read what I expect to be the most intelligent tweet of 2011.  A member of the OWASP...

Read More
January 25, 2011
NEI Cyber Security Implementation Workshop

Greetings, and happy 2011. It has been entirely too long since we’ve posted an update. In spite of that, I...

Read More
12