Compliance

FedRAMP Terminology

Feb 18, 2022 By Ignyte Team In Ignyte

Just like any compliance or set of regulations, FedRAMP uses many acronyms and key terms to describe processes, standards, and regulations. This article explains key terminology that is used in the FedRAMP framework. You may already be familiar with some of these compliance terms and acronyms from other security frameworks.

Read Post

Ignyte

Read more about FedRAMP Terminology

FedRAMP Cloud Service Providers and Services

Feb 18, 2022 By Ignyte Team In Ignyte

Google adopted its cloud infrastructure, Google Cloud Platform (GCP), to be compliant with FedRAMP. GCP earned a FedRAMP High authorization to operate (ATO) for several cloud products in a handful of locations and has uplifted the current FedRAMP Moderate services to more products and locations. Government agencies can now work with the highest level of classified information using GCP.

Read Post

Ignyte

Read more about FedRAMP Cloud Service Providers and Services

OSCAL and FedRAMP Automation

Feb 18, 2022 By Ignyte Team In Ignyte

The current FedRAMP Authorization process is a struggle. First, you must manage multiple regulatory standards and frameworks, which change over time. Second, regulatory standards and frameworks overlap in scope and can often conflict and be difficult to manage together. And, lastly, information systems continue to increase in size and complexity.

Read Post

Ignyte

Read more about OSCAL and FedRAMP Automation

Roadmap to FedRAMP Authorization

Feb 18, 2022 By Ignyte Team In Ignyte

For a Cloud Service Provider (CSP) to be FedRAMP accredited, it must complete the following six phases. They are diagnostic assessment, boundary and architecture review, documentation, technical remediation, testing preparation & residual risk, and Final Authorization to Operate.

Read Post

Ignyte

Read more about Roadmap to FedRAMP Authorization

Securing the digital supply chain Ep 7 Yaser M

Feb 17, 2022 By Riscosity In Riscosity

Yaser is a veteran in the construction industry and in this session we learn about what technologies are used in the construction technology sector, what are some of the gotchas that industry leaders should pay attention to and the various types of organizations that are there on the landscape..

View Video

Riscosity

Read more about Securing the digital supply chain Ep 7 Yaser M

NIST vs ISO Compliance: What's the Difference?

Feb 16, 2022 By Emily Heaslip In Nightfall

As businesses and health organizations seek to strengthen cybersecurity, they’re turning frequently to compliance frameworks to help prioritize, guide, and improve decision-making and implementation. Two of the more popular compliance frameworks are the NIST CSF and the ISO 27001. For IT teams seeking to better understand the difference between these frameworks, as well as which is the ideal tool for their business, here’s what to know.

Read Post

Nightfall

Read more about NIST vs ISO Compliance: What's the Difference?

Quick Guide on FedRAMP Fundamentals

Feb 16, 2022 By Ignyte Team In Ignyte

The federal government enacted the FedRAMP regulation in December 2011 to enable executive agencies and departments to use an assessment method based on risk and cost-effectiveness when adopting cloud technologies. A FedRAMP readiness assessment is mandatory for cloud products and solutions providers seeking to receive an Authorization to Operate (ATO). FedRAMP ATO indicates that a provider’s hosted information and systems meet FedRAMP requirements.

Read Post

Ignyte

Read more about Quick Guide on FedRAMP Fundamentals

Coralogix - On-Demand Webinar: Achieving Scale and Compliance During a Global Expansion

Feb 16, 2022 By Coralogix In Coralogix

Armis is the first agentless, enterprise-class security platform to address the new threat landscape of unmanaged and IoT devices. With a hybrid environment of both single and multi-tenant infrastructures generating massive amounts of data, the team needed a powerful solution to centralize and manage their log data. In this session, Armis’s Head of DevInfra Roi Amitay discusses how his team leverages Coralogix’s unique capabilities together with custom-built dev tools to streamline the development and debugging of microservices on multiple EKS clusters.

View Video

Coralogix

Read more about Coralogix - On-Demand Webinar: Achieving Scale and Compliance During a Global Expansion

CMMC Town Hall With Edward Spenceley, Bank of America | 2/16/22 | NeoSystems

Feb 16, 2022 By NeoSystems In NeoSystems

NeoSystems CMMC Town Hall Series: Join NeoSystems’ Chief Information Security Officer, Ed Bassett, for our weekly CMMC Town Hall designed for the Defense Industrial Base and GovCon community. Each session features special guests and offers an opportunity for attendees to ask questions regarding CMMC and cybersecurity. Topics covered include CMMC compliance requirements, how to prepare for CMMC certification, and the latest updates from the CMMC AB.

View Video

NeoSystems

Read more about CMMC Town Hall With Edward Spenceley, Bank of America | 2/16/22 | NeoSystems

Ep 6 Securing the digital supply chain featuring Prasad Ramakrishnan and Drew Daniels

Feb 16, 2022 By Riscosity In Riscosity

In this episode of Securing the digital supply chain we talk with two extremely accomplished security thought leaders from the Bay Area - Prasad Ramakrishnan, who is currently the CIO of freshworks and Drew Daniels who is a seasoned security savant and currently a senior member of SVCI. Both our guests have storied pasts in many well known companies, from startups to IPOs. We discuss SDLC, how to create successful security programs, the ins and outs of software supply chain management and some easter egg nuggets for vendors on how to approach CIOs and CISOs!

View Video