Modernizing the ATO Process: Cut Red Tape and Secure the Mission
Cutting Red Tape, Securing the Mission: Why Faster ATOs Matter Featured in PSC Contractor Magazine – Fall 2025By Gaurav “GP” Pal, CEO and Founder, stackArmor, a Tyto Athene Company Federal agencies and contractors dedicate millions of hours each year navigating the Risk Management Framework (RMF) and Authority to Operate (ATO) process—essential for security, but often […]
How to do FedRAMP the Wrong Way
How to do FedRAMP the Wrong Way A lovingly sarcastic field guide to burning time, money, and morale Let’s start with the myth that refuses to die: FedRAMP ATOs take 18–24 months and cost $3–5M. If you follow the classic FedRAMP advisory playbook, sure. You’ll spend months on a gap assessment, commission a reference architecture […]
Reimagining RMF ATOs: stackArmor’s Compliance-as-Code 20x
We at stackArmor have taken to heart the recent calls to “Blow up the Risk Management Framework (RMF)” and take the compliance drama head-on. ATOs are in the news almost daily, often associated with high costs and long approval cycles with questionable outcomes. As we’re all about to light the RMF on fire and re-imagine […]
stackCast Episode #5: Brian Price, CEO and Co-Founder at Kion
On a new episode of stackCast (powered by stackArmor), host Martin Rieger, Chief Solutions Officer & CISO at stackArmor, welcomes the CEO and Co-Founder at Kion, Brian Price. The two discuss: The evolution of the automation cloud operations solutions market and how Kion is revolutionizing cloud security and compliance The challenges organizations face when it […]
stackCast Episode #1: Introduction to stackArmor with CEO and Founder, Gaurav Pal (GP)
https://youtu.be/iF8JDGpzTHsWelcome to stackCast, powered by stackArmor, your go to source for all things related to cloud security and cybersecurity compliance. Host Martin Rieger, Chief Solutions Officer & CISO at stackArmor, kicks off the series with Gaurav Pal (GP), CEO and Founder of stackArmor, who shares: The vision behind stackArmor and challenges they faced early on […]
Is agile’s inattention to security to blame for software vulnerabilities?
Organizations across the globe are rapidly adopting agile frameworks for managing and implementing software systems.
Delivering a FedRAMP or 800-171 compliant cloud solution on AWS
Contractors providing technical support services for DOD and US Federal Agencies are required to provide FedRAMP compliant cloud solutions
Are you suffering from VIVO (Vulnerability In, Vulnerability Out) in your AWS cloud environment?
Vulnerability management of digital assets begins with strong Security By Design principles that ensure that vulnerabilities are not introduced into the system
Achieving Compliance and Security on AWS cloud
Organizations in regulated markets such as US Federal, Department of Defense, Public Sector, Healthcare or Financial Services have a need to meet specific regulatory and compliance standards.
Vulnerability Management and Penetration Testing on AWS Cloud
Organizations continue to migrate and adopt AWS Cloud Services and offer digital services to ir customers and stakeholders. Service providers especially in compliance focused markets such as healthcare, financial services and public sector markets must adhere to security
A Chat About SaaS Security and AWS Security Best Practices at AWS Boston MA Meetup
This is a guest post by Gaurav “GP” Pal, CEO at stackArmor I recently had an opportunity to present at the Boston AWS Boston Meetup on a topic that’s been in my sights for a while now – “State of SaaS Security, Common mistakes and AWS Security Best Practices”. The entire presentation is up […]