SteelCloud has secured a contract from an undisclosed systems integrator to renew licenses for a security technical implementation guide compliance software tool designed to support an information technology modernization effort by the U.S. Air Force.
Read More »Samsung Flagship Phones Approved for Federal Use
Samsung Electronics America’s flagship mobile phone products have achieved federal government certification.
Read More »Chef Reaches Security Milestones With Two Automation Platforms
Chef has reached three security milestones for two technology platforms the company designed to help government and enterprise clients automate compliance in cloud computing environments.
Read More »DoD Adds Over 50 Fortinet Security Fabric Platforms to Approved Products List; Bob Fortna Quoted
Fortinet has received a Defense Department certification that allows the company to offer additional security platforms to DoD agencies to meet their cybersecurity requirements. The company said Thursday more than 50 additional Fortinet Security Fabric offerings were added to the DoD Information Network Approved Products List following the completion of …
Read More »Fujifilm Medical Systems USA’s Picture Archiving Tech Obtains Authority to Operate From DoD
Fujifilm Medical Systems USA has secured a risk management framework-based authority-to-operate from the Defense Department to run the Synapse 5 picture archiving and communication system on the department’s networks. The company said Wednesday DoD ruled after a 14-month review that Synapse 5 PACS meets security controls stated in RMFs, which …
Read More »DISA OKs Security Technical Implementation Guide for ForeScout’s Device Discovery Tech
ForeScout Technologies has received Security Technical Implementation Guide validation from the Defense Information Systems Agency for a technology product designed to help government customers discover, manage and classify multiple devices and applications. The STIG validation for CounterACT follows an agreement signed between ForeScout and the Defense Department through Enterprise Software Initiative program, the company said Monday. …
Read More »Crunchy Data Unveils Open Source Security Compliance Automation Platform
Crunchy Data has unveiled an open source project with the goal to help agencies automate compliance with the Defense Department‘s security standards dubbed Security Technical Implementation Guide. The company said Tuesday it developed the PostgreSQL STIG Automation project to support the National Geospatial-Intelligence Agency‘s efforts to accelerate the authority-to-operate certification process for cloud platforms. …
Read More »Metronome-MobileIron Team Secures DHS SBIR Grant to Develop Mobile Security Tech
A MobileIron–Metronome Software team has received a $749,930 grant from the Department of Homeland Security‘s Science and Technology Directorate to develop technology for first responders to secure mobile device-based sensor systems. Both companies will work to create a security overlay designed to comply with security and data provenance requirements under the Next Generation …
Read More »Qualys Aims to Help Agencies Comply With Cyber Executive Order Via Cloud Platform
Qualys has unveiled a cloud platform designed to help federal agencies comply with the requirements of an executive order that seeks to build up the cybersecurity posture of the federal government’s networks and U.S. critical infrastructure. The EO signed by President Donald Trump in May requires agencies to manage cyber risks through the adoption of …
Read More »DOE Taps SteelCloud to Provide Security Compliance Automation Tool
SteelCloud has received a contract from the Energy Department to provide a remediation platform designed to automate compliance of applications and deployed data infrastructure with the Security Technical Implementation Guide. The company said Thursday ConfigOS works to scan endpoint platforms against STIG controls within a minute and remediate endpoints within 90 seconds. Brian …
Read More »GSA Adds Crunchy Data’s PostgreSQL Enterprise Support, Professional Services to Schedule 70
Crunchy Data has secured a position on the General Services Administration‘s Information Technology Schedule 70 contract vehicle to offer open-source database enterprise and engineering support and professional services to the federal government. The company said Wednesday that its five-year contract with the GSA includes the PostgreSQL Professional Services and the PostgreSQL Secure Enterprise Support that will provide government customers …
Read More »DISA Updates VMware vSphere STIG to Add Software-Defined Storage Platform; Bill Rowan Comments
The Defense Information Systems Agency has updated its Security Technical Implementation Guide for VMware’s vSphere offering to include the company’s hyper-converged infrastructure platform. DISA’s upgraded STIG seeks to offer cybersecurity policies and guide agencies on how to install the VMware vSAN HCI system in Defense Department-run networks in compliance with the department’s …
Read More »SteelCloud to Support DoD Windows 10 Deployment Through STIG Compliance Platform
SteelCloud has received a contract from a Defense Department component to provide a security compliance automation platform to support DoD’s deployment of the Windows 10 operating system. The company said Thursday its ConfigOS platform is designed to automate compliance with the Security Technical Implementation Guide as well as support Risk Management Framework accreditation. …
Read More »DISA Issues Security Technical Implementation Guide for Crunchy Data’s PostgreSQL Database
The Defense Information Systems Agency has released a Security Technical Implementation Guide for Crunchy Data Solutions‘ relational database management platform. DISA’s STIG for Crunchy Data’s PostgreSQL database seeks to guide agencies on how to field the database platform in government-run networks in compliance with the Defense Department’s security requirements, the company said Thursday. PostgreSQL is an open-source …
Read More »Navy Chooses SteelCloud Platform to Automate STIG Compliance Process
A U.S. Navy component has awarded SteelCloud a contract through the General Services Administration‘s Schedule 70 procurement vehicle to supply the military branch with a security compliance automation platform. The company said Thursday it will provide its ConfigOS platform to the Navy in an effort to help automate the Security Technical Implementation Guide remediation process and support Risk Management Framework accreditation for …
Read More »