SecureIT's President and CEO David Trout joins a panel of distinguished leaders from Intel, Oracle, Mitre and Microsoft to discuss data center readiness for government cloud solutions.  Chief amongst the topics at DICE EAST on May 25th is how colocation providers can prepare to tackle FedRAMP authorization.  With Northern Virginia on pace to soon become the world’s first 2GW data center market, the demand for FedRAMP expertise shows no sign of slowing down and SecureIT is ready to help organizations seize new opportunities.

June 9, 2021 The Department of Education (DoED) has selected a team that includes SecureIT for their Cybersecurity and Privacy Support Services (CPSS) contract program.  We look forward to working alongside our partners and providing our security, risk and audit expertise to address DoED's cybersecurity health and compliance requirements.

SecureIT is proud to announce its status as a StateRAMP Approved Assessor. StateRAMP was developed with procurement and IT officials in mind – to bridge the gap between the two offices and provide a framework of cybersecurity standards for government contractors. All too often procurement officials are challenged with procuring the best cloud services and software for the lowest price, without the tools or resources to verify cybersecurity compliance.  As one of the first FedRAMP Accredited 3PAOs with deep experience in the NIST 800-53 controls and over 300 engagements completed,  SecureIT looks forward to partnering with state governments and CSPs to achieve StateRAMP Readiness.

A global professional services firm has selected SecureIT to provide CMMC compliance advisory services to help ensure that the firm’s cybersecurity measures comply with the threat-based model for security controls that will be required for all DoD contractors beginning later this year.

SecureIT has announced a strategic partnership with Rizkly to provide defense contractors with a compliance software solution that addresses the DoD’s new CMMC cyber requirements. Rizkly provides a cost-effective and targeted approach to achieving compliance with a cloud-based app that streamlines collaboration between client staff and SecureIT experts, facilitates more efficient tasking and tracking of compliance efforts, and offers one-click creation of audit-ready documentation. Learn more here.

Yello, a leading provider of talent acquisition software, has selected SecureIT to provide FedRAMP advisory services to assist in achieving FedRAMP authorization.

SecureIT congratulates Monster Government Solutions for their recent listing on the FedRAMP Marketplace. Monster’s SaaS, Monster Hiring Management Enterprise (MHME), is currently designated as “In Process,” as they continue down the path to full Authorization.  SecureIT is excited to have been selected as Monster’s 3PAO, and look forward to working with the MGS team on their initial assessment.

SecureIT launches the LI-SaaS Rapid Assessment Solution for a streamlined approach to FedRAMP authorization. The LI-SaaS Rapid Assessment Solution is designed to help cloud service providers (CSPs) comply with the US Government’s requirements for safeguarding federal agency data. Fast-moving CSPs seeking FedRAMP Tailored authorization can look to SecureIT for responsive, practical and efficient assessment and advisory services.

SecureIT’s new suite of CMMC compliance solutions help contractors understand CMMC’s threat-based assessment model and implement the required security controls to protect sensitive government data. The CMMC compliance suite of solutions span education, pre-assessments, scoping, remediation, and documentation required for a given CMMC level.  In addition, the CMMC solution suite features Rizkly, a SaaS solution that streamlines and simplifies compliance tasks, audit preparation, and external assessment activities.

SecureIT and Rackspace continue to streamline FedRAMP compliance for SaaS providers through the Rackspace Inheritable Security Controls (RISC) program. The partners are currently working together on four FedRAMP gap assessment projects that expedite documentation, remediation and assessment efforts. For more information on RISC, click here.

Werner Lippuner has joined SecureIT as Senior Vice President of Strategy and Operations. Prior to joining SecureIT, Werner spent over three decades at EY providing assurance and advisory services to clients in different industries. In his recent role, he was a Partner responsible for services provided to large cabinet-level Federal agencies. Prior to that, he was responsible for building and managing EY’s Federal Risk Advisory Services practice.  Werner will drive critical strategies to accelerate growth and advance SecureIT as a full-spectrum cybersecurity and IT risk services provider.

SecureIT has been awarded a five-year U.S. General Services Administration (GSA) IT Schedule 70 contract (47QTCA19D00FE). This contract, with potential of three (5) year options to follow, enables SecureIT to partner with federal, state, and local governments and provide cybersecurity advisory, risk, and compliance expertise through Special Item Number (SIN) 132-51. IT Schedule 70 provides government buyers access to products and services from vetted and qualified IT providers at pre-negotiated rates.

Corey Clements, SecureIT FedRAMP Advisory Services Director, will discuss FedRAMP authorization at the Carahsoft-ATARC Federal Cloud Marketplace Forum on July 24, 2019. The Marketplace Forum, held at the JW Marriott in Washington, D.C., will bring together industry experts and government executives to discuss best practices for achieving FedRAMP authorization. 3PAO panelists Corey Clements, SecureIT, Gary Guercio, Coalfire Systems Inc., and Stephen Halbrook, Schellman & Company, LLC, will share their FedRAMP knowledge and experience.

SecureIT Director and FedRAMP compliance expert, Corey Clements joins Telos in presenting a 50-minute webinar “I’m Ready for My FedRAMP Assessment, Now What?” on June 6th to help cloud service providers (CSPs) understand the process of working with a Third Party Assessment Organization (3PAO). The webinar is designed to help businesses understand the technical issues that are critical for FedRAMP success. Corey’s discussion will help CSPs prepare to execute the steps necessary for a successful FedRAMP assessment on the first attempt. SecureIT encourages FedRAMP candidates to leverage its FedRAMP resource library to increase the efficiency of the authorization process.

David Trout, SecureIT President and CEO, will discuss FedRAMP Acceleration at the Telos Security Solutions 2019 Conference, May 22, 2019 in Norfolk, Virginia, with panelists from Telos Corporation and Rackspace. Panelists discuss how Cloud Service Providers (CSPs) can accelerate their FedRAMP process using FedRAMP authorized cloud services and compliance automation. As an accredited 3PAO and leading FedRAMP advisor, David will share insights to help CSPs reduce the time and effort required for authorization.

Continuing its mission to provide practical and efficient compliance solutions,  SecureIT announces its participation in the Rackspace Inheritable Security Controls (RISC) program to help cloud service providers (CSPs) achieve FedRAMP authorization. As an accredited Third Party Assessment Organization (3PAO), SecureIT will provide FedRAMP gap assessments that help CSPs identify remediation requirements ahead of authorization.   The RISC program highlights the use of FedRAMP-authorized cloud platforms and services as a solution for reducing the time and cost of achieving authorization.  As a leading FedRAMP advisor and 3PAO, SecureIT looks forward to joining Rackspace, Telos, and Carahsoft to help CSPs leverage the RISC program to expedite Federal sector success.

MIS Sciences has engaged SecureIT to be their FedRAMP 3PAO for their upcoming Annual Assessment.  MIS Sciences has a FedRAMP authorized Iaas/PaaS infrastructure with a JAB P-ATO.  MIS Sciences selected SecureIT because of our cost effective FedRAMP offerings, and our management commitment to understanding each client’s unique needs, and structuring our solutions to best meet them.

Meridian has tasked SecureIT to help lead their Readiness efforts for both SOC 2 and FedRAMP.  Because SecureIT understands the specific requirements and the overlap of both, we are uniquely qualified to help Meridian to implement cost-effective tools, processes, and corporate governance that makes sense, and is right-sized for their organization.

SecureIT proudly participates in the AWS re:Invent conference in Las Vegas to help companies and partners achieve faster, more efficient IT and cybersecurity compliance for their cloud initiatives.  Companies leveraging Amazon and Rackspace compute or data services such as Aurora, RedShift, and RDS have a parallel requirement to ensure that their IT security and compliance practices encompass these new cloud services. Many of the cloud compliance insights and best practices shared at the event can be found in our eBook on Cloud Audit Best Practices.

SecureIT is pleased to announce that the Intelliworx Platform for automating and improving business processes and government forms is now FedRAMP Authorized.  SecureIT’s FedRAMP experts assisted Intelliworx in preparing for FedRAMP by designing controls, recommending technical solutions, and creating required documentation.  “The process was long and detailed and I want to congratulate my team for all their hard work in getting it done. I also want to thank SecureIT and Schellman & Company for helping us get across the finish line,” said Rob Hankey, CEO for Intelliworx. By meeting the rigorous security and risk management standards for FedRAMP Authorization, Intelliworx can now continue to grow and bring value to its federal government agencies.

SecureIT, in partnership with S4 Analytics, was chosen to provide FedRAMP and Security Assessment services to the Federal Aviation Administration Office of Information Security and Privacy (IS&P).  SecureIT will be performing cloud security assessments and vulnerability reporting on Agency Cloud environments.

SecureIT performed a FedRAMP 3PAO Readiness Assessment of Recovery Point Systems’ INCloudGov solution, which resulted in INCloud Gov becoming approved as FedRAMP Ready.  SecureIT FedRAMP assessors evaluated technical and operational controls to ensure that they were adequately designed and operating effectively.

Pan-American Health Organization engaged SecureIT to perform a security assessment and a penetration test of a key system.  SecureIT was tasked with identifying and reporting on weaknesses that could be used by an external attacker to disrupt the confidentiality, availability, or integrity of systems and provide appropriate recommendations to strengthen the organization’s external security posture.

Mark your calendars for Thursday, April 27th as SecureIT’s Tobias McCurry sheds light on Windows privileges and user permissions so you can improve corporate network security.  As part of SANS Cyber Security Training, Tobias’ presentation reviews how Windows handles permissions and privileges. The presentation explains how tools such as Security Explorer, Permissions Analyzer, or Gold Finger help with respect to the privileges, uncovers gaps in using these tools alone,  and shows how they can be filled using PowerShell.  Get more details on this event here.

Announcing the 2018 Financial Services IT Audit Roundtable hosted by SecureIT in Reston, Virginia. This event brought together leaders from companies such as E*TRADE, Fannie Mae, and FINRA to discuss the latest IT Audit trends and best practices. Participants will share their experiences and best practices for prioritizing audits, teaming with the business, and gaining the necessary skills to manage risk in a cloud IT environment. Access the “Transforming Audit for the Cloud” best practices eBook here.