Exostar Releases Risk Mgmt Suite for Cybersecurity Audits

Exostar has unveiled a risk management tool that will help organizations under the Defense Industrial Base that intend to independently conform to the National Institute of Standards and Technology's Special Publication 800-171 security controls.

Certification Assistant is developed to assist users in evaluating and documenting security posture in preparation for Cybersecurity Maturity Model Certification audits, the company said Thursday.

The tool will also allow suppliers and original equipment manufacturers to trace security controls' status, assess cybersecurity risks and view guides on CMMC V1’s practices and NIST’s SP 800-171 Revision 2 security controls.

“Certification Assistant facilitates and brings visibility, consistency, insight, and repeatability to the process, which is particularly important for smaller organizations that may not possess significant cybersecurity resources or expertise,” said Scott Armstrong, senior director and group product manager at Exostar.

You may also be interested in...


Army Taps Charles River Analytics for Trauma Care Algorithm

Charles River Analytics has received almost $1 million in funds from the U.S. Army to develop an agent-based algorithm that could provide teams of robotic and human caregivers with direction and assistance in treating traumatic injuries.

U.S. Army

Army Names Six Companies to Bid for Orders Under $76M Design-Build Contract

The U.S. Army has selected six companies to design, build, sustain, modernize and restore military and civilian facilities under a $76M multiple-award contract. The construction companies will compete for task orders under the firm-fixed-price contract and work to complete duties by Jan. 21, 2026, the Department of Defense said Friday.


CISA Seeks Market Info on Incident Mgmt Tracking System

The Cybersecurity and Infrastructure Security Agency wants to identify market sources of a system that would help operators track incident management activities.

CISA said Friday in a SAM notice its threat hunting unit needs an incident management work tracking system with an encryption level of at least 140-2 in an effort to enhance the security of information technology enterprise of the federal government.