ThreatAlert Security Platform for ATO Acceleration

ThreatAlert®  Security Platform is a compliance accelerator for FedRAMP, FISMA/RMF, HIPAA, PCI-DSS, ITAR and CMMC accreditation on AWS and AWS GovCloud. The ThreatAlert® Security Platform is a vetted AWS solution that provides critical security controls required for meeting NIST SP 800-53 based requirements. ThreatAlert® supports FedRAMP High, Moderate, Low; DOD CC SRG IL-2, IL-4,  IL-5 and CMMC Level-3, Level-4 and Level-5 baselines including CUI.  The ThreatAlert® Security Platform provides an “in-boundary” suite of cloud-native & cloud augmented security services. The security services cover all major NIST control families including – code analysis, boundary protection, FIPS compliance, SIEM, MFA, vulnerability management, and auditable events monitoring amongst other services. All ThreatAlert® services are compliant with FIPS, CIS Benchmarks, and OWASP standards.

The cloud security platform includes the ThreatAlert® Cloud Security Framework for rapid iterative deployment and the ThreatAlert® Security Operations Center for continuous monitoring, reporting and alerting. ThreatAlert® Cloud Security Framework is an agile deployment framework with discover, design and deploy sprints that cover six key activities. These activities include establishing the landing zone, deploying security services, tailoring the documentation suite referred to as ThreatAlert® CDocs that includes plans, procedures and control descriptions. Post-deployment managed services are provided using the ThreatAlert® Security Operations Center. FedRAMP, FISMA/RMF, and CMMC require continuous monitoring, reporting and alerting. ThrealAlert® Security Operations Center is staffed with experienced and qualified engineers that provide post-ATO support for compliance activities based on daily, weekly, monthly, quarterly, and annual frequency. ThreatAlert® Security Operations Center uses the ThreatAlert® Security Platform for management, reporting & alerting including managing POAM’s and continuous monitoring activities based on CMMC and FedRAMP monitoring controls.

ThreatAlert® Cloud Security Platform satisfies NIST SP 800-53 security controls and is a Cloud General Support System (GSS) designed to meet FedRAMP, DOD CC SRG, FISMA/RMF, CMMC, PCI-DSS, ITAR, HIPAA, and other compliance requirements. Simplifying and accelerating the compliance process is achieved by bringing together diverse technical, compliance, security, and cloud architecture practices into a single seamless orchestration framework. stackArmor ThreatAlert® Cloud Security Platform offers flexible deployment models including “in-boundary” installation that ensures that security data does not leave the system boundary. This deployment model is especially useful for FedRAMP, FISMA, and DFARS compliance use cases and does not require access to the AWS console.

Key use cases supported by ThreatAlert™ include:

In addition to our primary use cases, we also support PCI-DSS, HIPAA, and SOC2 compliant environments for security-focused organizations looking to implement security best practices and protecting their data. Schedule a free consultation to see if we can perform cybersecurity risk assessment, penetration testing, or vulnerability scans for your system.

Benefits of ThreatAlert® ATO Acceleration

Rapid deployment of security and monitoring services

ThreatAlert® is deployed “in-boundary” using Infrastructure-as-Code (IaC) automation and includes rapid installation, configuration, and integration with tenant applications, data, and user services. All security services for SIEM, IDS/IPS, VPN, Anti-Virus, HBSS, Vulnerability Scanning, MFA, and Monitoring are deployed in a single sprint and help save time and money in expensive engineering services. This is especially important when meeting tight assessment deadlines and contract milestones.

40% reduction in ATO cost with included documentation package

Our unique ATO accelerator provides a “pre-fab” security stack that is accompanied by the complete set of documentation templates with pre-filled security control descriptions. We are the only ATO acceleration solution provider that transparently shares the controls matrix meeting more than 60% of the controls for FedRAMP, DOD CC SRG, and CMMC compliance.

Post-ATO support and managed services

Post-ATO continuous monitoring, POAM reporting, and managed services support delivered as an integrated package with flexibility and customization of roles & responsibilities tailored to client requirements. This includes tailored ConMon reports developed from the ThreatAlert® Cloud Log Aggregation Warehouse (CLAW).

Tailored Delivery Model

ThreatAlert® is uniquely designed to provide a comprehensive and tailored service that accommodates specific client requirements around tools, integrations, and hybrid team models. The service includes the entire range of FedRAMP advisory services and is priced as well as delivered in modular components that allow the customer to pick and choose specific components that best meet their needs. Further, we provide highly simplified and streamlined pricing based on micro, small, medium, or large environments that include virtual machines, containers, or serverless components. Contact us to schedule a free consultation and see if we can assist in your FedRAMP ATO acceleration efforts.

The pricing model is flexible and is based on the size of the environment as follows:

  1. stackArmor Security and Compliance Platform (Dedicated Deployment Model)
    • Full-stack alerting and monitoring Small environment with less than 25 instances: $96,000 Annual Subscription
    • Full-stack alerting and monitoring Medium environment with between 25-50 instances: $192,000 Annual Subscription
    • Please send us an email to solutions at stackArmor dot com for large environments.
  2. stackArmor Security and Compliance Platform (Shared Deployment Model)
    • Full-stack alerting and monitoring Small environment with less than 25 instances: Annual Subscription benchmarked to AWS spend.
    • Full-stack alerting and monitoring Medium environment with between 25-100 instances: Annual Subscription benchmarked to AWS spend.
    • Please send us an email to solutions at stackArmor dot com for large environments.

Accelerating FedRAMP, FISMA or CMMC ATOs with a Cloud GSS

Contact Us for Free Consultation

Learn more about ThreatAlert® and contact us for a free consultation and ask for sample reports. Fill out form to contact a stackArmor Cybersecurity Specialist.

Vulnerability Management and Penetration Testing on AWS Cloud