SteelCloud LLC, a STIG and CIS compliance automation software developer, and Telos Corporation, a leading provider of cyber, cloud and enterprise security solutions for the world’s most security-conscious organizations, announced today a partnership to help customers reduce the complex orchestration of NIST Risk Management Framework (RMF) compliance. Customers benefit from access to all seven steps of the RMF through one unified, automated solution.
SteelCloud’s ConfigOS capabilities solve the Categorize/Identify, Select and Implement components of RMF for technical assets. ConfigOS reviews an asset, determines which Security Technical Implementation Guides (STIG) are applicable, scans against the STIG requirements, identifies compliance indicators and automates remediation of findings. Meanwhile, Xacta incorporates and utilizes this information during the Assess and Authorize steps of the RMF and to initiate the Monitor step once Authorization to Operate (ATO) is achieved.
Also Read : Developer Strategies to Ensure Successful Application Deployment
ConfigOS and Xacta working together drive decisions to solve identification and selection challenges while reporting key indicator metrics required to achieve and maintain ATO. STIG and vulnerability data from ConfigOS are aggregated into Xacta and mapped to applicable requirements as a part of Assessment and Authorization (A&A), giving customers a streamlined approach to obtaining necessary approvals. Xacta’s workflow automation facilitates the entire NIST RMF workflow – managing validation, analysis, documentation and accreditation processes from start to finish.
“Partnering with SteelCloud marks an important milestone in Telos’ commitment to serving the world’s most security-conscious organizations,” said Hugh Barrett, chief product officer of Xacta solutions at Telos. “Navigating RMF compliance can quickly become costly and time-consuming without the proper tools in place. We’re pleased to work alongside SteelCloud to deliver not only best-of-breed technology, but also peace of mind for the practitioners working through these challenging yet necessary compliance requirements.”
“Xacta is the most impactful ATO and RMF automation solution currently deployed across the federal government,” said Brian Hajost, SteelCloud chief operating officer. “Our automation around checklist creation and compliance data integration into Xacta will take weeks out of the RMF timeline. The integration with Xacta’s workflow will provide a significant increase in agility and reduction in effort for our joint customers.”