Subsidiary to assess commercial vendors to federal security programs like FedRAMP, help federal agencies understand the security risk of cloud adoption
WASHINGTON – April 2, 2013 – Coalfire announced today a new subsidiary, Coalfire Federal, designed to address the unique audit and assessment requirements federal agencies and their vendors must meet as a result of government legislation and programs such as FISMA and FedRAMP.
Coalfire Federal is based in Washington, D.C. and headed by Tom McAndrew, Coalfire executive vice president, who is responsible for ensuring commercial organizations and cloud service provider (CSP) customers meet federal security requirements that will enable federal agencies to adopt cloud services.
Greater attention than ever before is being placed on cybersecurity at the federal level, as many experts in Washington have stated our current cyber defenses may be lacking and that a “cyber 9/11” could happen soon. National cybersecurity posture continues to be a hot-button topic and with legislation in the works it has developed an increased awareness that steps need to be taken.
“The Coalfire Federal expertise in FedRAMP and FISMA will help inform a broad range of organizations as to the leading approaches in cyber security management as the government begins to move systems to commercial providers,” said Gordy McElroy, strategic advisor to Coalfire Federal and managing partner of Bluewater International.
FedRAMP and FISMA are designed to ensure commercial CSPs submitting a cloud environment available for government use meet a baseline of security controls. Upon approval, those cloud environments are available for multi-agency use, which government agencies must move low- and moderate- impact systems to as part of the “cloud first” policy.
“Cybersecurity is already a significant threat and a top priority for the nation’s economic and national security leaders,” said McAndrew. “This new subsidiary is a natural way to focus our services since we work so closely with government agencies and commercial organizations.”
As one of the nation’s first accredited FedRAMP third party assessors, Coalfire Federal can provide advisory services or audit assessment services for CSPs. CSPs must meet the controls, processes, procedures and security requirements of FedRAMP and other federally mandated requirements, for initial authorization and through continuous monitoring requirements.
“Government agencies are turning to commercial vendors to support and host government systems, so it is becoming a national interest that the security posture of these vendors be maintained and monitored,” said Norm Willox, a strategic advisor to Coalfire Federal and CEO of Bluewater International.
Coalfire Federal is a subsidiary of Coalfire, a leading, independent information technology Governance, Risk and Compliance (IT GRC) firm that provides IT audit, risk assessment and compliance management solutions. Founded in 2001, Coalfire has offices in Dallas, Denver, Los Angeles, New York, San Francisco, Seattle and Washington, D.C. and completes thousands of projects annually in retail, financial services, healthcare, government and utilities. Coalfire Federal services focus on the certification and accreditation process of information systems for government authorization under DIACAP, FedRAMP and FISMA. For more information, visit http://www.coalfirefederal.com
<< Go Back