The Coalfire Blog

Welcome to the Coalfire Blog, a resource covering the most important issues in IT security and compliance. You'll also find information on Coalfire's insights into the unique cybersecurity issues that impact the industries we serve, including Cloud Service Providers, RetailFinancial Services, Healthcare, Higher Education, Payments, Government, Restaurants, and Utilities.

The Coalfire blog is written by the company's leadership team and our highly-credentialed security assessment experts. We look forward to your comments, so please join the conversation.

  • One Way to Boost Proactive Cybersecurity

    June 30, 2016, Chip Coy, Solution Architect

    It’s clear from media articles that new CISOs need to make an immediate impact on their organization’s security program in the first 90 days with action items such as “make a quarterly plan for the next year”.

    Read more
  • Creating a Cyber Insurance Policy

    June 29, 2016, Andrew Barratt, Managing Director, Europe

    According to research from PartnerRe and Advisen, the global cyber-insurance market is currently worth $2 billion a year, a number which is expected to double by 2020.With 60% of underwriters and brokers seeing a significant demand in cyber-insurance from customers, there is clearly  a great business opportunity for the insurance sector to offer cyber-insurance policies. However, unlike the standard model of developing a policy, cyber-insurance has a number of areas that policy providers need to first consider in order to see success.

    Read more
  • FedRAMP High Baseline Requirements Published

    June 28, 2016, Abel Sussman, Director, TAAS – Public Sector and Cyber Risk Advisory, Coalfire

    The Federal Risk and Authorization Management Program (FedRAMP) Project Management Office officially released its High baseline for High impact-level systems. This baseline is at the High/High/High categorization level for confidentiality, integrity, and availability in accordance with FIPS 199; and is mapped to the security controls from the NIST SP 800-53, Rev. 4 catalog of security controls. Previously, the FedRAMP authorization process was only designed for low and moderate impact systems.

    Read more

Recent Posts

Post Topics


RSS Feed

The Coalfire BlogSubscribe to Feed
Chrome users will need to install RSS Subscription Extension (by Google)