ORLANDO, FLORIDA. December 2nd, 2019. International Cyber-Security Firm GLESEC announces a comprehensive approach to the emerging Department of Defense CYBER SECURITY MATURITY MODEL CERTIFICATION (CMMC) standards’ auditing and fulfillment. The new platform, part of GLESEC Member Portal Platform (GMPTM v.3.1) adds automatic and manual testing with a number of fulfillment services. This consolidates cyber security and cyber compliance to assist organizations cut their time, address cyber security incidents and remediation while achieving compliance in a cost-effective manner. CMMC’s vision is to be a unified Cyber Security Standard for Department of Defense acquisitions to reduce exfiltration of Controlled Unclassified Information (CUI) from the Defense Industrial Base. It combines various cybersecurity standard and best practices in order to establish several “maturity” levels for an organization; when implemented it is intended to help reduce risk to the organization. GLESEC’s approach combines the testing (which can be performed by GLESEC’s full set of managed security services and auditing professional services) with the execution of the necessary controls by the same services providing a complete and integrated solution to the CMMC requirement. “We embrace this new standard as another way to help organizations improve their Cyber Security position while complying with a DoD requirement and achieve the maturity level that is required for their business in the most cost-effective manner”, said Sergio Heker, GLESEC’s CEO. The GLESEC offering combines its Orchestrator Service, the Managed GAP Compliance service and auditing services in a way as to provide (a) Visibility and Awareness to top management, (b) Process and Resolution that encompass GLESEC’s business processes and services and (c) Business Optimization thru the automation and outsourcing platform. GLESEC identified in its Seven Element Model Framework (7eCSMTM) compliance as one of its elements. The Orchestrator’s GMP platform provides visibility of Compliance with a number of dashboards that map various standards like NIST SP 800-53; NIST SP 800-171 and others that match the CMMC requirements to the contracted services. Further to this the GAP Compliance Service presents the deviations and establishes a score from current maturity position to requirement. The information flows from a large collection of managed services contracted by the client and/or by auditing services in order to provide a cost-effective on-going testing and reporting process. GLESEC continues its on-going process of innovation to provide more value to its clients while leading the market with the largest and most organized set of cyber-security and cyber-compliance services in the industry. To achieve this, GLESEC Professional Services established an alliance with RB Advisory LLC, specializing in compliance assessment and auditing. This alliance enhances both organizations by combining all the managed security and professional services of GLESEC with the specialized consulting in compliance of RB Advisory. The new offering provides a comprehensive solution to the CMMC requirement by: - Bringing a complete and integrated solution for on-going testing, recommendations, remediation and mitigation;
- Providing awareness and visibility of the state of compliance and maturity;
- Produce business optimization by helping reduce time-to-resolution of gaps in compliance and remediation with a unique consideration of accountability and costs.
|