Government Business, Cybersecurity
PR Newswire | January 04, 2024
Synack has achieved the Moderate "Authorized" designation from the U.S. Federal Risk and Authorization Management Program (FedRAMP), demonstrating Synack's premier security testing platform meets the cloud compliance framework's rigorous requirements at the Moderate level.
The milestone approval means additional U.S. agencies can deploy Synack's best-in-class penetration testing and vulnerability management solutions – even in systems that process Controlled Unclassified Information and other official or sensitive data.
"This achievement is a gamechanger for our federal clients," said Dr. Mark Kuhr, Synack CTO and co-founder. "It also sends a clear message to all our customers: You can trust Synack to keep your data secure as we deliver pentesting of the highest caliber."
The Government Accountability Office has warned that "malicious actors are becoming more willing and capable of carrying out cyberattacks" on federal targets, with the potential to seriously harm national security. FedRAMP is a cornerstone of the U.S. government's efforts to realize that vision and combat threats as agencies continue to shift critical data to the cloud. Additionally, White House requirements such as Memorandum 22-09 require agencies to adopt a zero trust architecture strategy by September 2024.
Operating dedicated application security testing programs is a critical component of a zero trust strategy, and Synack proudly empowers agencies to conduct such services in a FedRAMP Moderate Authorized environment.
"This FedRAMP designation clears the way for Synack's premier security testing platform to protect more government systems," said Synack vice president for public sector Catherine Bowen. "We are doubling down on our goal to improve the security posture of agencies and companies handling mission-critical government applications, internally and externally."
To qualify as Moderate Authorized from FedRAMP, Synack successfully enforced 325 security controls and underwent extensive third-party vetting of its security infrastructure.
Achieving full authorization reflects Synack's ongoing commitment to making the world more secure by providing on-demand access to the Synack security testing platform and the 1,500-plus vetted security researchers who make up the global Synack Red Team.
The U.S. Department of Health and Human Services (HHS) sponsored Synack's successful bid for FedRAMP authorization. Today's announcement builds on Synack's FedRAMP Moderate "In Process" designation achieved in 2022, when Synack was first listed on the FedRAMP marketplace.
Synack has worked with HHS and dozens of other federal agencies to test internal assets and elevate their security postures. The company participated in the Defense Department's inaugural "Hack the Pentagon" program in 2016, helping find and fix high-impact vulnerabilities in a range of military networks. DoD would go on to host a follow-up initiative featuring Synack, aimed at normalizing a trusted, crowdsourced approach to security testing.
Synack's premier on-demand security testing platform harnesses a talented, vetted community of security researchers and smart technology to deliver continuous penetration testing and vulnerability management, with actionable results. We are committed to making the world more secure by closing the cybersecurity skills gap, giving organizations on-demand access to the most trusted security researchers in the world. Headquartered in Silicon Valley with regional teams around the world, Synack protects federal agencies and a growing list of Global 2000 customers, uncovering over 13,000 vulnerabilities for clients in 2023 alone.
PR Newswire | January 24, 2024
CGI Federal Inc., the wholly-owned U.S. operating subsidiary of CGI Inc., today announced that its Sunflower asset management cloud solution has received approval from FedRAMP, certifying CGI's cloud-based, software-as-a-service (SaaS) solution for use across federal government agencies in the U.S.
CGI's Sunflower cloud solution is a proven, built-for-federal capability that enables management of client property, including federal property, personal property and IT assets. Currently enabling management of 4.2 million client assets at over 75 federal entities, Sunflower asset management solutions provide clients with improved efficiency, software standardization and predictable costs, balancing client needs for flexibility and functionality. Many of the agencies currently using Sunflower today have authority to operate in cloud infrastructure environments.
"For federal asset and financial managers confronting the challenges posed by cybersecurity, cloud modernization and digital transformation, Sunflower empowers organizations to improve decision-making, accountability and transparency," said John B. Owens II, Senior Vice President Consulting Delivery, Federal Solutions Group, CGI. "Sunflower's listing as a FedRAMP-approved solution provides federal IT decisionmakers with additional confidence that CGI cloud technologies meet the highest security and compliance standards for mission-critical government entities."
FedRAMP is a government-wide program that promotes the adoption of secure cloud services across the federal government by providing a standardized approach to security and risk assessment for cloud technologies and federal agencies. As one of the most stringent compliance processes an IT provider can undertake, FedRAMP includes an in-depth examination of a solution's data security and data governance capabilities, as well as the security practices of its cloud services.
About CGI Federal
CGI Federal Inc., a wholly-owned U.S. operating subsidiary of CGI Inc., is dedicated to partnering with federal agencies to provide solutions for defense, civilian, healthcare, justice, intelligence, and international affairs missions. Founded in 1976, CGI Inc. is among the largest independent IT and business consulting services firms in the world. With 91,500 consultants and professionals across the globe, CGI Inc. delivers an end-to-end portfolio of capabilities, from strategic IT and business consulting to systems integration, managed IT and business process services and intellectual property solutions. CGI Inc. works with clients through a local relationship model complemented by a global delivery network that helps clients digitally transform their organizations and accelerate results. CGI Inc. Fiscal 2023 reported revenue is C$14.30 billion and CGI Inc.
PR Newswire | January 20, 2024
Thentia, a leading innovator in regulatory technology, is pleased to announce that it is now working with Amazon Web Services (AWS) to drive continued innovation in the public sector. Thentia is empowering regulators to seamlessly tap into the company's comprehensive regulatory assurance Software-as-a-Service (SaaS) platform, Thentia Cloud, powered by AWS, fortifying the landscape of regulatory oversight.
"We are thrilled to be working with AWS as we persist in our commitment to deliver an enhanced experience for government agencies and regulatory entities globally." says Julian Cardarelli, CEO, Thentia. "By leveraging the power of AWS, we solidify our position as a clear leader and a versatile multi-cloud provider in our category, affirming our commitment to ongoing excellence."
Cardarelli adds, "With our world-class, fully integrated regulatory assurance platform now accessible on AWS, we strengthen our commitment to empower the public sector with sophisticated tools for unparalleled efficiency in fulfilling their mandate of public protection."
Other key benefits of Thentia's relationship with AWS include working with AWS engineers and architects to optimize Thentia Cloud's performance, security, compliance, and reliability. Partnering with AWS also helps ensure that Thentia Cloud remains at the forefront of the latest advances in cloud computing.
Designed for regulators by regulators, Thentia Cloud digitizes, streamlines, and consolidates all essential regulatory functions within a single and secure cloud-based environment. The platform is designed to empower regulators with a comprehensive 360-degree view of all licensee activities, giving them a much more modern, streamlined, and efficient way to work and ultimately meet their regulatory obligation to safeguard the public.
Trusted by millions of licensed professionals, businesses, and entities globally, Thentia has been recognized by regulators worldwide for its enhanced blend of technological innovation and regulatory proficiency. In addition to AWS, Thentia Cloud is available on other cloud providers including Google Cloud, IBM Cloud, and Microsoft Azure.
Thoughtfully built for regulators, by regulators, Thentia is driving regulatory transformation for hundreds of regulators and regulatory agencies worldwide with a platform that handles all key department functions including licensing, investigations, enforcement, fitness to practise, quality assurance, scope of practise, continuing education, board management, data analysis, and more. Thentia Cloud empowers regulators to transcend the constraints of legacy processes, custom-built solutions, and a web of disparate applications with a single unified 360-degree platform, setting new standards in efficiency and effectiveness.
Thentia Cloud is available on all major cloud providers, including Google Cloud, Amazon Web Services (AWS), IBM Cloud, and Microsoft Azure.