Virtualization Technology News and Information
Coalfire, an Amazon Web Services, Inc. (AWS) Advanced Consulting and Government Competency Partner within the AWS Partner Network (APN), Introduces a Cloud Strategy to Help AWS Customers Become FedRAMP Assessment-Ready in Less Time

Coalfire, a provider of cybersecurity advisory services, announced that the company is offering a Federal Risk and Authorization Management Program (FedRAMP) consulting and engineering service that enables customers to become FedRAMP authorized, using AWS Security Automation and Orchestration (SAO) methodology, in less time than more traditional approaches. Coalfire is one of the security providers to collaborate with AWS in developing the SAO methodology, which helps reduce risk and ease the burden of deploying solutions that meet FedRAMP compliance.

AWS customers who need to meet the U.S. federal government FedRAMP requirements for technical readiness and documentation of their system can now work with Coalfire on an accelerated and automated process enabled by the AWS SAO methodology. Customers can use AWS CloudFormation, DevOps tools and leading security practices to gain reusable Automation and DevOps Orchestration techniques for FedRAMP workloads and applications. Customers can deploy FedRAMP preconfigured AWS Cloud and security services to achieve a FedRAMP Authority to Operate (ATO) faster.

"We're excited about what this new approach to FedRAMP accreditation can do for our customers," said Adam Salerno, Senior Director, Security Architecture at Coalfire. "The Coalfire methodology enables AWS customers to build a FedRAMP-compliant solution in less than six months, rather than working through the historical 12+ month readiness process, enabling organizations (which may not have deep cloud expertise) to get to market faster and reduce internal resource burdens."

Using the new AWS SAO methodology, Coalfire completed a FedRAMP SAO cloud migration and documentation engagement for Innovest Systems, a SaaS-based wealth management solution, in less than six months. This enabled Innovest Systems to constrain, track and publish continuous risk treatments (CRT) and configurations, and assimilate DevOps routines (e.g., continuous integration (CI) and continuous delivery (CD)) into a secure AWS architecture that is configured according to FedRAMP requirements for moderate impact systems.

"We're very pleased with the speed and efficiency of this process, and Coalfire's methodology and expertise have us confident going into the FedRAMP 3PAO assessment," said Erick Lindley, Chief Security Officer at Innovest. "We're looking forward to the opportunity to expand our FedRAMP-required customer base after this process is complete."

"Security and compliance are primary considerations for so many of our customers as they begin their cloud journey," said Troy Bertram, Director of Business Development and Partners, Worldwide Public Sector at AWS. "We're proud to collaborate with APN members like Coalfire to rapidly bring our joint customers the solutions they need to achieve their unique compliance requirements so that they can take advantage of the many benefits of cloud."

Published Thursday, November 08, 2018 10:13 AM by David Marshall
Filed under: ,
There are no comments for this post.
To post a comment, you must be a registered user. Registration is free and easy! Sign up now!
<November 2018>