Straight talk about whether FedRAMP accreditation is right for you. In the world of FedRAMP, you are either a cloud service provider (CSP) or a user of cloud services. Many of our CSP clients are asked about FedRAMP accreditation. In some cases, a government user has told them they should be FedRAMP accredited. This is… Read more »
3PAO
Cybersecurity is a Team Sport: Why a Fractional CISO Makes Sense to Manage Cyber Risk
We live in a sharing economy. Almost anything can be had for a fraction of the cost of ownership. Need a ride? You can use Pace for bikes, Lyft or Turo for cars, or Lime for scooters. Need cash? Shared residential wi-fi? (Try Fon.) How about a shared puppy? (Fractional cuteness at Share A Dog.)… Read more »
Is “FedRAMP Ready” Status in your PaaS, IaaS, or SaaS’ Future?
“FedRAMP Ready” is an official designation from the Federal Risk and Authorization Management Program, or FedRAMP. The status of “FedRAMP Ready” is awarded to cloud service providers who undergo an independent security assessment to show they are ready to move ahead with the full FedRAMP authorization process. Achieving FedRAMP Ready status is typically a singular… Read more »
But Seriously, What is a 3PAO?
3PAO means “third party assessment organization” under the FedRAMP program. FedRAMP is the U.S. government’s first program for the protection of federal information in the cloud. A 3PAO audits the cloud service provider because, in short, self-assessments are not permitted. Stated another way: a 3PAO is an independent entity that performs initial and period security… Read more »
FedRAMP: A Heavyweight Security Framework for Cloud Service Providers
You need FedRAMP if you want to prove your cloud services is secure enough for U.S. government data. Read the full September 6, 2018 article published on cybersecurityventures.com here. In its latest Compliance Report for Cybersecurity Ventures, Sera-Brynn shared how FedRAMP came into being, who should care, and why being FedRAMP-authorized is important for companies. “The… Read more »
Cloud Service Provider Requirements for FedRAMP Compliance
By Lindsey Benes, Sera-Brynn Security Analyst In the realm of securing sensitive data, acronyms abound and FedRAMP is one heard quite often. The Federal Risk and Authorization Management Program, or FedRAMP, was developed to standardize the approach to security assessment, authorization and continuous monitoring for cloud products and services. FedRAMP was developed in collaboration with… Read more »
Sixth Consecutive Year of Solid Revenue Growth for Cyber Risk Management Firm Sera-Brynn
Suffolk, Virginia, January 4, 2018—Sera-Brynn, LLC today reported a 112% growth in revenue in 2017 over 2016. This marks the sixth consecutive year of growth revenue for the firm. Over the last five years, Sera-Brynn has realized a phenomenal 64.7% Compound Annual Growth Rate (CAGR). “Sera-Brynn’s revenue growth this year was driven by two things:… Read more »
Critical FedRAMP 3PAO U.S. Federal Certification Attained by Cybersecurity Firm Sera-Brynn
Sera-Brynn Attains 3PAO FedRAMP Assessor Certification, one of fewer than 50 companies to do so. Suffolk, VA, July 25, 2017 (Newswire.com) – Sera-Brynn, LLC, a leading cyber security audit and advisory firm, announced it is now an independent, Third Party Assessment Organization (3PAO) under the FedRAMP program. FedRAMP, the term for the Federal Risk and… Read more »
Higher Education Related Analysis
- The Higher Ed Model for Cybersecurity Compliance
Cyber Tips For Students Heading Off To College- Cybersecurity Acronyms for Higher Education
- 550+ Universities Have Been Targeted for Cyber Attacks: How Higher Education Institutes Can Better Handle Them
- Protecting Students From Cyber Crimes, Heather Engel on WVEC