Compliant Operating System (OS)
A compliant operating system is any operating system that meets specific standards established by an entity. For example, if an organization wanted to create a CIS-compliant operating system, it would need to meet the standards set forth by the Center for Information Security, whose sole purpose is to “create confidence” in the connected world. A virtual machine image (VMI or image for short) is a bootable copy of the operating system of a virtual machine in the cloud.
The CIS benchmark: An Accessible Way to Protect Your Devices and Workplace
The ever changing threats of our cyber landscape are rapidly becoming more varied and more complicated. Thankfully, The CIS (Center for Internet Security) has been helping in this fight with strong recommendations for security controls since the early 2000s.
An Overview of Container Security for FedRAMP
In this article, we will explore container vulnerability scanning, frame the vulnerability management requirements in a FedRAMP context, and provide commentary on the new FedRAMP PMO updates to container scanning requirements for cloud service providers (CSPs).
A Look at the Modernizing FedRAMP Memo
The White House Office of Management and Budget (OMB) released a draft memorandum with the goals of enhancing the Federal Risk and Authorization Management Program, widely known as FedRAMP. In this blog post, we will go through a brief background on FedRAMP, then dive into the details of the OMB memo, and what it means for the future of FedRAMP.
