Xacta’s ability to inherit IT security controls saves cloud customers substantial configuration time
Ashburn, Va. – June 8, 2016 – Telos® Corporation, a leading provider of continuous security solutions and services, today announced enhancements to the Xacta® IT GRC product suite to help customers quickly and effectively demonstrate and document security compliance using the Amazon Web Services (AWS) Cloud, leading to faster approvals to operate (ATO).
With these enhancements to Xacta, each program or project automatically inherits security controls from the AWS Enterprise Accelerator for Compliance, a security-focused, standardized architecture solution to help Managed Service Providers (MSPs), cloud provisioning teams, developers, integrators, and information security teams adhere to strict security, compliance and risk management controls. This inheritance represents a substantial reduction of time required for controls configuration.
“With our current pilot of Xacta and the integration of the AWS Enterprise Accelerator for Compliance, inheriting controls and documenting security compliance should be simpler,” said a cloud security officer within the intelligence community. “This should save substantial time and effort when producing bodies of evidence for A&A [assessment and authorization] activities.”
Xacta, featuring AWS Enterprise Accelerator for Compliance, allows organizations to seamlessly automate compliance as they stand up their data, information and applications in the cloud. The solution allows users to select which regulations apply to their organization, generate and auto-populate a compliance package specific to their cloud environment and complete the process via a friendly wizard-based application.
“We constantly hear that security and compliance are top of mind for our customers, but they can both be time-consuming and resource-intensive processes. For that reason, we’ve created the AWS Enterprise Accelerator for Compliance as a framework to help compress and simplify compliance processes,” said Teresa Carlson, vice president, worldwide public sector for Amazon Web Services, Inc. “We are so pleased that AWS Partner Network (APN) member Telos has leveraged this offering to further streamline compliance for our customers through Xacta.”
The AWS Enterprise Accelerator for Compliance is a packaged service offering that helps customers adhere to strict controls for security, compliance and risk management. Xacta can automate the inheritance of these controls, simplifying compliance testing and verification of other controls specific to the customer’s IT environment.
“Faster to cloud means faster to mission,” added John B. Wood, CEO and chairman of Telos. “Xacta has been shown to reduce the controls that must be manually validated, getting customers to ATO much more quickly. And Xacta provides a view of compliance over time, giving security professionals a continuous understanding of risk changes in the organization.”
Xacta leverages the AWS Shared Responsibility Model for faster cloud compliance and deployment. While AWS manages security of the cloud, security in the cloud is the responsibility of the AWS customer. Xacta also simplifies the adoption and automation of the remaining controls, radically reducing the time and effort needed to achieve compliance in the cloud.
Xacta is an advanced IT governance, risk and compliance (IT GRC) platform with an intuitive interface for managing tasks and configurable executive dashboard for situation awareness. Xacta, featuring AWS Enterprise Accelerator for Compliance:
- Reduces the time to generate regulatory documentation of IT security procedures
- Automates Security Controls Traceability Matrix (SCTM) and reduces Test Plan Generation time
- Inherits common security controls across systems to reduce the complexity and cost of security administration
- Leverages more than 100 leading regulations and policies and more than 5,000 requirements and controls for IT risk compliance and management
- Produces a complete portfolio of management reports to track Plans of Actions & Milestones (POA&M)
- Tracks and links artifacts such as sample documents, archived documents and uploaded images
- Establishes reference-extension relationships to ensure accurate configuration reporting for type-accredited systems
- Supports production of privacy impact assessments (PIA) to demonstrate that privacy protections have been incorporated
About Telos Corporation
Telos Corporation empowers and protects the world’s most security-conscious agencies and organizations with solutions and services for continuous security assurance of individuals, systems and information. Telos’ offerings include cyber security solutions and services for IT risk management and information security; secure mobility to protect globally connected organizations; and identity management to establish trust in personnel and continuously monitor for insider threats. The company serves military, intelligence and civilian agencies of the federal government, allied nations and commercial organizations around the world. To learn more about Telos, visit www.telos.com.