The Coalfire Blog

Welcome to the Coalfire Blog, a resource covering the most important issues in IT security and compliance. You'll also find information on Coalfire's insights into the unique cybersecurity issues that impact the industries we serve, including Cloud Service Providers, RetailFinancial Services, Healthcare, Higher Education, Payments, Government.

The Coalfire blog is written by the company's leadership team and our highly-credentialed security assessment experts.

  • Preparing for DevSecOps Transformation

    Patrick Kehoe, Chief Marketing and Strategy Officer, Coalfire

    The latest report from Coalfire’s prestigious Cloud Advisory Board (CAB), consisting of some of the world’s most experienced C-level cyber leaders and cloud security thought leaders from Coalfire, provides some of the most significant insight and timely advice for cybersecurity leaders in 2022 and beyond. The smartest path of DevSecOps transformation Securealities report roadmaps the journey to continuous integration and deployment (CI/CD).

    Read more
  • CMMC 2.0 – What, How, and Why Act Now?

    Stuart Itkin, Vice President, CMMC & FedRAMP Assurance, Coalfire Federal

    With the recent streamlining of the Cybersecurity Maturity Model Certification (CMMC) framework, the path to assure Defense Industrial Base (DIB) cybersecurity has changed dramatically from what was originally planned. There’s a lot to learn about CMMC 2.0, but the objective remains the same: protect sensitive defense information from theft by our adversaries. The plan to achieve that objective now recognizes the challenges of fielding a small army of third-party assessors over a compressed timeframe and the business impact and cost on small and medium sized DIB organizations.

    Read more
  • The Biggest Update You’ll Barely See

    Kyle Pippin, Senior Director, Product Management

    More than 10 years ago, Dan Cornell created ThreadFix to solve a prevalent issue within the application security space. A decade later and the product stands as a centerpiece to Fortune 100 organizations’ SDLC processes across a vast array of industries. 

    Read more
  • Accelerating CMMC Compliance

    Stuart Itkin, Vice President, CMMC & FedRAMP Assurance, Coalfire Federal

    The reason the Cybersecurity Maturity Model Certification program is so critical to national security can be traced back to the second World War: To counter German submarine attacks against Allied supply chains, British intelligence hacked a German Enigma machine, stole the code, intercepted enemy communications, and neutered the Nazi U-boat threat. Today, foreign adversaries are turning the tables against us. The Sea Dragon hack, reported in 2018, included the theft of communications and cryptography data for our submarine fleet. The important difference: we detected the theft. But what if we hadn’t? Would our submarine fleet truly be an effective nuclear deterrent today, or would we be living with a false sense of security?

    Read more
  • Staying current with HITRUST advisory changes

    Zach Shales, Senior Director, Cloud Infrastructure, Coalfire

    As a result of an ever-evolving threat landscape, compliance requirements are proliferating at an unprecedented rate. It can be overwhelming to keep up with the staggering number of new and updated regulations, compliance frameworks, and standards. HITRUST®, founded in 2007, recognized this challenge and created the HITRUST CSF® to aggregate disparate authoritative sources into a single and certifiable framework. Read more
  • Displaying results 1-5 (of 167)
     |<  < 1 - 2 - 3 - 4 - 5 - 6 - 7 - 8 - 9 - 10  >  >| 

Recent Posts

Post Topics