stackArmor CISO Johann Dettweiler Featured on FORUM Power Podcast
stackArmor CISO Johann Dettweiler Featured on FORUM Power Podcast Johann Dettweiler, Chief Information Security Officer at stackArmor, a Tyto Athene company, was recently featured on the Forum Power Podcast episode titled “Risk, FedRAMP & the Future of Federal Cybersecurity: A CISO’s Perspective with Johann Dettweiler.” In this episode, Johann dives into: How AI is reshaping […]
Crushing the 10 Tenets of DoD CSRMC — The Future is ThreatAlert®
Crushing the 10 Tenets of DoD CSRMC — The Future is ThreatAlert® If the Risk Management Framework (RMF) was the long-running compliance opera: grandiose sets, endless rehearsals, dead-eyed troop members that just want it to end; the Cybersecurity Risk Management Construct (CSRMC) is the punk-rock reboot with a break-stuff attitude, razor-sharp set list, and the […]
Managing Generative AI Risk and Meeting M-24-10 Mandates on Monitoring & Evaluation
OMB’s memo M-24-10 (5c. Minimum Practices for Safety-Impacting and Rights-Impacting Artificial Intelligence) is prescriptive (and timebound): No later than December 1, 2024 and on an ongoing basis while using new or existing covered safety-impacting or rights-impacting AI, agencies must ensure these practices are followed for the AI: D. Conduct ongoing monitoring. In addition to pre-deployment […]
Is it time to enforce an Authority-to-Operate (ATO) for Healthcare Organizations?
The Change Healthcare security breach has impacted over 94% of hospitals as reported by the American Health Association (AHA). A cascading set of events was unleashed starting with the Feb 21, 2024 announcement of the data breach at Change Healthcare requiring nearly $2BÂ in advance payments severely impacting nearly 900,000 physicians, 33,000 pharmacies, 5,500 hospitals […]
FedRAMP and Federal Cybersecurity Market Roundup October 2023
October was a busy month for FedRAMP. From Federal Secure Cloud Advisory Committee (FSCAC) meetings to an automation overhaul, there were a slew of activities aiming to further prepare the program for the future it faces and will need to serve. Developing the Next Generation of FedRAMP The push to really explore FedRAMP’s upcoming chapter […]
FedRAMP and Federal Cybersecurity Market Roundup September 2023
It’s been a few weeks now since Carahsoft’s FedRAMP Headliner Summit, but there is no shortage of moments to recall from it. For instance, Robert Costello commemorated his two-year anniversary as CIO at the Cybersecurity and Infrastructure Security Agency (CISA) during the event. While speaking on his role, he explained the difference that has unfolded, […]
Implementing Zero Trust with Okta’s Identity Engine
By: Matthew Venne, Senior Solutions Director In an increasingly interconnected world, securing digital assets and sensitive information has never been more critical. In a never-ending game of “cat and mouse, malicious actors and cyber security professionals go back and forth trying to one-up each other.  As a result, the security required to protect digital assets […]
stackArmor Launches ATO for AI™ Governance Model To Help Public Sector Organizations Safely and Securely Accelerate AI Adoption
Solution receives industry backing with newly established AI Risk Management Center of Excellence (CoE) MCLEAN, Va., September 27, 2023 – stackArmor, the leader in security and compliance acceleration for government organizations, today announced its Approval To Operate (ATO) for AI™ accelerator, that helps public sector and government organizations rapidly implement security and governance controls to […]
FedRAMP and Federal Cybersecurity Market Roundup August 2023
If federal cybersecurity were a play, regulatory programs such as FedRAMP would be like the directors helping to guide all of the participating actors properly execute their parts and bring the vision to life. And with the spotlight growing brighter due to the mass digital migration, evolving tech landscape, and expanding threat environment, they recently […]
Navigating a JAB Provisional ATO (P-ATO)
Achieving a FedRAMP Authority to Operate (ATO) is a mandatory requirement for cloud service offerings (CSOs) that hold federal data. If you have software (or infrastructure or a platform) that is offered as-a-service and government agencies are your target customers, your cloud offering will be required to obtain and maintain a FedRAMP P-ATO. An ATO […]
Streamlining Federal Cybersecurity Requirements [Federal News Network]
With updates such as the latest revision to the National Institute of Standards and Technology Special Publication 800-53, navigating CMMC, FedRAMP, SP-800-171, and FISMA is more important than ever. Martin Rieger, the Chief Solutions Officer at stackArmor, joined Federal News Network to discuss the mistakes companies often make in tackling this process, what introduced changes […]
Webinar – Securing and Monitoring your AWS Cloud with Splunk
Implementing a strong continuous monitoring program is critical for meeting security and compliance requirements.
Webinar – Vulnerability Management and Penetration Testing on AWS Cloud
Please register for Vulnerability Management and Penetration Testing on AWS Cloud on Aug 15, 2018
Protecting against a Distributed Denial of Service (DDOS) attack using AWS
Denial of Service (DoS) and Distributed Denial of Service (DDoS) attacks are happening at an increasing frequency impacting public-facing web applications.
Webinar- how to create a compliant SSP for NIST SP 800-171
Join us for free webinar on NIST 800-171 Compliance.
Updated FedRAMP Controls for Cloud Services coming based on NIST SP 800-53 Rev 5
The National Institute of Science and Technology (NIST) have been busy updating their SP 800-53 Security and Privacy Controls Catalog (Revision 5).
Is Wall Street to blame for Equifax’ Cybersecurity Woes?
The Equifax CEO will be leaving the firm due to the massive data breach with approximately 143 million identities impacted.This departure is in addition to the already announced departures of the CIO and CISO.
Cloud Boundary Protection using NGFW
NIST Special Publication 800-53 Rev 4 for FedRAMP and US Federal system mandates the use of robust boundary protection mechanisms. The Systems and Communications (SC) family
Secure DevOps for FedRAMP Compliant Cloud
US Federal Agencies are rapidly adopting and deploying secure cloud platforms to deliver production quality software with fewer defects, and better security. Continuous Integration/Continuous Deployment (CI/CD)
Navigating the Complex Enterprise Compliance World—With the Help of stackArmor
Guest post by stackArmor Customer App47 Last year, the App47 team was faced with a daunting task unlike any we’d come across before: meeting the compliance needs of a Fortune 500 company in the highly regulated healthcare industry. We needed to do it quickly, too. We were in the process of navigating a large bid […]
Healthcare Cybersecurity in Focus
The IT Security, and Healthcare sectors are all abuzz over the recent MedStar attack, especially in light of the earlier attacks on two other medical facilities in California and Kentucky, additionally the US Government Accountability Office (GAO) recently released a report on over 300 security incidents faced by the Healthcare.gov portal. But what do these […]
Cloud Security Best Practices and Common Errors – stackArmor White Paper
Migrating to a cloud platform is a business necessity mandated by the need to be agile and deliver digital services in a hyper-competitive environment. However, it is critical to ensure that security issues are given due consideration. Gartner estimates that by 2020, 95% of cloud breaches will not be caused by vulnerabilities at the cloud […]
Is your business ready for the coming Cybersecurity Tsunami?
Cybersecurity related regulatory changes are quietly but surely building a tsunami that is going impact every business that conducts transactions online or hosts customer or sensitive data. As the number of data breaches have continued to soar and capture daily headlines, the regulators and lawmakers are forcing changes that will have a significant cost […]
TIC Connectivity and FedRAMP High – Is Cloud Nirvana near?
GSA’s FedRAMP PMO has been continually evolving the compliance framework for driving the wider adoption of commercial cloud services. Last year, they released for public comment the TIC Overlay initiative as well as the FedRAMP High baseline. Both of these are critical to enhanced cloud adoption and helping Federal customers solve some of the critical […]