Together
Continuous Monitoring
L&C personnel are experts in developing
continuous monitoring strategies and establishing effective monitoring programs.
Our methodology, when tailored to our clients' operating environment is a proven method for managing risk in near real-time, while reducing process redundancies and cost.
Our programs focus on both technology-enabled means of monitoring such as
centralized patch/vulnerability management and operational controls such
as personnel security and human resources.
Read More
Security in the Cloud
On June 6, 2012 the Federal Risk and Authorization Management Program (FedRAMP)
officially launched. Cloud Service Providers (CSP) must demonstrate
compliance with FedRAMP and obtain the services of an accredited Third
Party Assessment Organization (3PAO). Currently implemented cloud
services must achieve compliance by June 6, 2014. FedRAMP is
mandatory for Federal Agency cloud deployments with low and moderate
impact security categorizations.
Read More
Risk Management
L&C provides strategic and tactical support for establishing and tailoring security and Risk Management programs through requirements tailoring, assessment frequency tuning, and assessment scope and depth planning. Our
methodology creates economies of scale through the application of custom authorization approaches such as a “Type” authorization process using standardized configurations and “Site” authorizations for shared Federal facilities.
Read More