News & Events
SecureIT is proud of the impact it makes on its employees, clients, and the communities in which it operates. Below you will find announcements and press releases which highlight some of our accomplishments:
February 15, 2021
SecureIT is proud to announce its status as a StateRAMP Approved Assessor. StateRAMP was developed with procurement and IT officials in mind – to bridge the gap between the two offices and provide a framework of cybersecurity standards for government contractors. All too often procurement officials are challenged with procuring the best cloud services and software for the lowest price, without the tools or resources to verify cybersecurity compliance. As one of the first FedRAMP Accredited 3PAOs with deep experience in the NIST 800-53 controls and over 300 engagements completed, SecureIT looks forward to partnering with state governments and CSPs to achieve StateRAMP Readiness.
A global professional services firm has selected SecureIT to provide CMMC compliance advisory services to help ensure that the firm’s cybersecurity measures comply with the threat-based model for security controls that will be required for all DoD contractors beginning later this year.
March 31, 2020
Yello, a leading provider of talent acquisition software, has selected SecureIT to provide FedRAMP advisory services to assist in achieving FedRAMP authorization.
March 18, 2020
SecureIT congratulates Monster Government Solutions for their recent listing on the FedRAMP Marketplace. Monster’s SaaS offering, Monster Hiring Management Enterprise (MHME), is currently designated as “In Process,” as they continue down the path to full Authorization. SecureIT is excited to have been selected as Monster’s 3PAO, and look forward to working with the MGS team on their initial assessment.
February 11, 2020
SecureIT launches a new suite of CMMC compliance solutions to help contractors understand CMMC’s threat-based assessment model and implement the required security controls to protect sensitive government data. The CMMC compliance suite of solutions span education, pre-assessments, scoping, remediation and documentation required for a given CMMC level. In addition, the CMMC solution suite features Rizkly, a SaaS solution that streamlines and simplifies compliance tasks, audit preparation, and external assessment activities.
January 5, 2020
Werner Lippuner has joined SecureIT as Senior Vice President of Strategy and Operations. Prior to joining SecureIT, Werner spent over three decades at EY providing assurance and advisory services to clients in different industries. In his recent role, he was a Partner responsible for services provided to large cabinet-level Federal agencies. Prior to that, he was responsible for building and managing EY’s Federal Risk Advisory Services practice. Werner will drive critical strategies to accelerate growth and advance SecureIT as a full-spectrum cybersecurity and IT risk services provider.
December 25, 2019
SecureIT and Rackspace continue to streamline FedRAMP compliance for SaaS providers through the Rackspace Inheritable Security Controls (RISC) program. The partners are currently working together on four FedRAMP gap assessment projects that expedite documentation, remediation and assessment efforts. For more information on RISC, click here.
December 21, 2019
SecureIT launches the LI-SaaS Rapid Assessment Solution for a streamlined approach to FedRAMP authorization. The LI-SaaS Rapid Assessment Solution is designed to help cloud service providers (CSPs) comply with the US Government’s requirements for safeguarding federal agency data. Fast-moving CSPs seeking FedRAMP Tailored authorization can look to SecureIT for responsive, practical and efficient assessment and advisory services.
SecureIT has been awarded a five-year U.S. General Services Administration (GSA) IT Schedule 70 contract (47QTCA19D00FE). This contract, with potential of three (5) year options to follow, enables SecureIT to partner with federal, state, and local governments and provide cybersecurity advisory, risk and compliance expertise through Special Item Number (SIN) 132-51. IT Schedule 70 provides government buyers access to products and services from vetted and qualified IT providers at pre-negotiated rates.
July 15th, 2019
Corey Clements, SecureIT FedRAMP Advisory Services Director, will discuss FedRAMP authorization at the Carahsoft-ATARC Federal Cloud Marketplace Forum on July 24, 2019. The Marketplace Forum, held at the JW Marriott in Washington, D.C., will bring together industry experts and government executives to discuss best practices for achieving FedRAMP authorization. 3PAO panelists Corey Clements, SecureIT, Gary Guercio, Coalfire Systems Inc., and Stephen Halbrook, Schellman & Company, LLC, will share their FedRAMP knowledge and experience.
SecureIT Director and FedRAMP compliance expert, Corey Clements joins Telos in presenting a 50-minute webinar “I’m Ready for My FedRAMP Assessment, Now What?” on June 6th to help cloud service providers (CSPs) understand the process of working with a Third Party Assessment Organization (3PAO). The webinar is designed to help businesses understand the technical issues that are critical for FedRAMP success. Corey’s discussion will help CSPs prepare to execute the steps necessary for a successful FedRAMP assessment on the first attempt. SecureIT encourages FedRAMP candidates to leverage itsFedRAMP resource library to increase the efficiency of the authorization process.
David Trout, SecureIT President and CEO, will discuss FedRAMP Acceleration at the Telos Security Solutions 2019 Conference, May 22, 2019 in Norfolk, Virginia, with panelists from Telos Corporation and Rackspace. Panelists discuss how Cloud Service Providers (CSPs) can accelerate their FedRAMP process using FedRAMP authorized cloud services and compliance automation. As an accredited 3PAO and leading FedRAMP advisor, David will share insights to help CSPs reduce the time and effort required for authorization.
May 15, 2019
Continuing its mission to provide practical and efficient compliance solutions, SecureIT announces its participation in the Rackspace Inheritable Security Controls (RISC) program to help cloud service providers (CSPs) achieve FedRAMP authorization. As an accredited Third Party Assessment Organization (3PAO), SecureIT will provide FedRAMP gap assessments that help CSPs identify remediation requirements ahead of authorization. The RISC program highlights the use of FedRAMP-authorized cloud platforms and services as a solution for reducing the time and cost of achieving authorization. As a leading FedRAMP advisor and 3PAO, SecureIT looks forward to joining Rackspace, Telos, and Carahsoft to help CSPs leverage the RISC program to expedite Federal sector success.
December 15, 2018
MIS Sciences has engaged SecureIT to be their FedRAMP 3PAO for their upcoming Annual Assessment. MIS Sciences has a FedRAMP authorized Iaas/PaaS infrastructure with a JAB P-ATO. MIS Sciences selected SecureIT because of our cost effective FedRAMP offerings, and our management commitment to understanding each client’s unique needs, and structuring our solutions to best meet them.
December 4, 2018
Meridian has tasked SecureIT to help lead their Readiness efforts for both SOC 2 and FedRAMP. Because SecureIT understands the specific requirements and the overlap of both, we are uniquely qualified to help Meridian to implement cost-effective tools, processes, and corporate governance that makes sense, and is right-sized for their organization.
November 26, 2018
SecureIT proudly participates in the AWS re:Invent conference in Las Vegas to help companies and partners achieve faster, more efficient IT and cybersecurity compliance for their cloud initiatives. Companies leveraging Amazon and Rackspace compute or data services such as Aurora, RedShift, and RDS have a parallel requirement to ensure that their IT security and compliance practices encompass these new cloud services. Many of the cloud compliance insights and best practices shared at the event can be found in our eBook on Cloud Audit Best Practices.
November 19, 2018
MicroStrategy again chose SecureIT to perform its annual Risk Assessment. SecureIT has a long history or working with MicroStrategy in this regard, and we’ve developed a partnership that allows MicroStrategy to effectively leverage SecureIT’s deep bench of IT Risk and cybersecurity professionals.
October 29, 2018
National Rural Utilities Cooperative Finance Cooperation selected SecureIT as its IT Audit cosourcing partner for 2019. SecureIT will be performing selected technical IT Audits in conjunction with NRUCFC staff. SecureIT was selected because of their technical expertise, and their deep experience in the Financial Services vertical
October 21, 2018
SecureIT was selected by MetTel to perform a penetration test to assess the security of publicly-accessible infrastructure, public Web applications, and internal systems to meet FISMA requirement. The intent of this testing was to determine if the security of the perimeter network, web portals, and internal systems could be compromised by malicious actors.
October 5, 2018
Trapwire selected SecureIT to be its FedRAMP Third Party Assessment Organization (3PAO). SecureIT was selected because of its deep experience with the FedRAMP program, its commitment to quality, and the flexible and engaging nature of how we deliver services to our customers.
August 24, 2018
SecureIT is pleased to announce that the Intelliworx Platform for automating and improving business processes and government forms is now FedRAMP Authorized. SecureIT’s FedRAMP experts assisted Intelliworx in preparing for FedRAMP by designing controls, recommending technical solutions, and creating required documentation. “The process was long and detailed and I want to congratulate my team for all their hard work in getting it done. I also want to thank SecureIT and Schellman & Company for helping us get across the finish line,” said Rob Hankey, CEO for Intelliworx. By meeting the rigorous security and risk management standards for FedRAMP Authorization, Intelliworx can now continue to grow and bring value to its federal government agencies.
August 10, 2018
SecureIT, in partnership with S4 Analytics, was chosen to provide FedRAMP and Security Assessment services to the Federal Aviation Administration Office of Information Security and Privacy (IS&P). SecureIT will be performing cloud security assessments and vulnerability reporting on Agency Cloud environments.
July 20, 2018
SecureIT performed a FedRAMP 3PAO Readiness Assessment of Recovery Point Systems’ INCloudGov solution, which resulted in INCloud Gov becoming approved as FedRAMP Ready. SecureIT FedRAMP assessors evaluated technical and operational controls to ensure that they were adequately designed and operating effectively.
July 6th, 2018
Pan-American Health Organization engaged SecureIT to perform a security assessment and a penetration test of a key system. SecureIT was tasked with identifying and reporting on weaknesses that could be used by an external attacker to disrupt the confidentiality, availability, or integrity of systems and provide appropriate recommendations to strengthen the organization’s external security posture.
April 2, 2018
Mark your calendars for Thursday, April 27th as SecureIT’s Tobias McCurry sheds light on Windows privileges and user permissions so you can improve corporate network security. As part of SANS Cyber Security Training, Tobias’ presentation reviews how Windows handles permissions and privileges. The presentation explains how tools such as Security Explorer, Permissions Analyzer, or Gold Finger help with respect to the privileges, uncovers gaps in using these tools alone, and shows how they can be filled using PowerShell. Get more details on this event here.
March 15, 2018
Announcing the 2018 Financial Services IT Audit Roundtable hosted by SecureIT in Reston, Virginia. This event brought together leaders from companies such as E*TRADE, Fannie Mae, and FINRA to discuss the latest IT Audit trends and best practices. Participants will share their experiences and best practices for prioritizing audits, teaming with the business, and gaining the necessary skills to manage risk in a cloud IT environment. Access the “Transforming Audit for the Cloud” best practices eBook here.
November 12, 2017
Tobias McCurry, SecureIT’s Director of Penetration Testing Services completes research uncovering gaps in tools that Windows administrators rely upon to manage user permissions and privileges. The findings and proposed solution are now published in a SAN Institute paper entitled: “The Effectiveness of Tools in Detecting the ‘Maleficent Seven’ Privileges in the Windows Environment.” Read the entire research paper here.
October 19, 2017
SecureIT is proud to continue its role in leading the cybersecurity community to benefit the Children’s National Health System. Working through the White Hat USA organization, SecureIT’s President and CEO David Trout along with Paul Innella co-chair the WhiteHat Gala on October 26, 2017. Read the entire announcement here.
October 10, 2017
SecureIT launches the NIST 800-171 Express Compliance Package to help government contractors comply with Federal requirements for safeguarding controlled unclassified information. Read the entire announcement here.
September 25, 2017
SecureIT rallies the cybersecurity industry leaders to support the Children’s National Health System through the 2017 White Hat Gala Event. Learn more.
April 27, 2016
SecureIT awarded follow-on contract to provide annual assessment services for a cloud-based Call Center solution supporting the Department of Transportation.
April 25, 2016
Global Advisory and Assurance firm selects SecureIT to provide Financial Statement Audit support
March 30, 2016
National healthcare provider engages SecureIT to provide HIPAA Risk Assessment Services to several business units across the country
March 14, 2016
SecureIT selected to provide Vulnerability Assessment Services to a National full-service Real Estate entity
February 22, 2016
SecureIT awarded contract to deliver risk and compliance services to a National Transportation provider
February 11, 2016
SecureIT partners with TruShield to expand delivery and Managed Security Services offerings
February 05, 2016
Global SaaS provider selects SecureIT to provide FedRAMP 3PAO Assessment Services
January 27, 2016
Regional bank selects SecureIT to provide critical cyber security services
January 8, 2016
Leading learning management SaaS provider engages SecureIT to deliver FedRAMP readiness advisory services
December 18, 2015
SecureIT selected by major health care provider to develop a Vendor Risk Management program and perform risk assessments of external service providers
November 25, 2015
Fortune 50 Financial Services firm selects SecureIT as its IT Audit co-sourcing provider for 2016
October 23, 2015
SecureIT President David Trout co-chairs the 3rd Annual White Hat Gala, an organization which has now raised over $1M for Children’s National Health System
October 5, 2015
SecureIT establishes reseller agreement with Rapid7, a leading provider of Security, Analytics, and Compliance solutions
September 24, 2015
SecureIT delivers FedRAMP advisory services to a leading File Sharing and Collaboration solution provider
September 7, 2015
SecureIT establishes reseller agreement with Kenna Security, a leading provider of intelligence and vulnerability management platforms
August 21, 2015
SecureIT establishes reseller agreement with Elastica, a leading Cloud Access Security Broker solution
August 10, 2015
Fortune 50 Financial Services firm selects SecureIT to perform a series of cybersecurity audits and assessments
July 13, 2015
SecureIT engaged as a FedRAMP 3PAO by a large cybersecurity SaaS provider
June 15, 2015
SecureIT awarded contract by Financial regulatory organization to provide security and advisory services
May 6, 2015
SecureIT selected by large systems integrator to provide FISMA security services
April 23, 2015
Accellion selects SecureIT to assist with strategy and preparation for FedRAMP
March 30, 2015
SecureIT selected by AFYA to provide Operational Support of Cloud solution that supports the Office of Personnel Management (OPM).
March 4, 2015
SecureIT awarded contract from Senture to obtain FISMA security services for Call Center solution supporting Department of Transportation. Senture partnered with HP and Oracle CRM to provide a total cloud-based solution
March 1, 2015
Jay Jackson has joined the SecureIT Management team as the Vice President of Talent to support the continued growth of the company
February 1, 2015
Graham Holdings Company engaged SecureIT to deploy and fine-tune their Qualys implementation for vulnerability management and metrics program
January 30, 2015
SecureIT selected by IaaS provider to support FedRAMP Readiness of their Flexpod solution
January 26, 2015
A large financial services firm chose SecureIT to perform internal audits of the security and management of UNIX and distributed database platforms
January 13, 2015
The Financial Services division of a large IT services firm re-engaged SecureIT to perform a technical security review of a key application, including a web application architecture assessment and penetration test
January 5, 2015
SecureIT selected by emerging HR cloud solution provider to support FISMA and FedRAMP Readiness of their Federal solution
December 29, 2014
Supporting the continued growth of SecureIT, Tim Enright has joined the company as the Vice President Corporate Development
November 7, 2014
OPIC expands SecureIT contract to include support for security operations and continuous monitoring
October 4, 2014
Hearst selects SecureIT for HIPAA assessment and program support of multiple health businesses
September 10, 2014
New Jersey community bank chose SecureIT to help build a vulnerability and compliance management program and enhance their information security capabilities for OCC compliance
September 9, 2014
3M Health Information Systems selects SecureIT for FISMA compliance support to meet HHS/CMS requirements
August 14, 2014
A New England-based banking technology solutions firm selected SecureIT to perform a comprehensive security assessment of routers and firewalls configurations and policies
August 8, 2014
SecureIT and our partner CPA firm re-engaged by an IT service provider to perform a SOC 2 audit of the security and availability of their strategic services
August 4, 2014
Inquisit, an IT solution provider to Federal government agencies, awarded contract to SecureIT for security planning, assessment and authorization services for Call Center solution built on Microsoft Parature CRM for the Department of Transportation
July 28, 2014
SecureIT selected to perform an advisory review of the vulnerability and threat management program of a major financial services firm
May 19, 2014
SecureIT engaged by a financial regulatory firm to perform a network security audit and penetration test to identify internal and external threats to the network
May 9, 2014
SecureIT expands work for Federal regulatory agency to provide ISSO support
March 10, 2014
Cherry Bekaert partnered with SecureIT for FISMA and NIST expertise for Selene Finance contract with HUD/Ginnie Mae. The CB/SecureIT team assisted Selene Finance to comply with Ginnie Mae security, privacy and financial management requirements
February 21, 2014
The AAMC selected SecureIT as internal audit co-sourcing partner for performing technical IT and information security audits
February 14, 2014
SecureIT selected by Carrington Mortgage to implement the NIST Risk Management Framework (RMF) in support of its mortgage servicing contract with HUD/Ginnie Mae. SecureIT completed assessment and assisted Carrington to obtain ATO
July 12, 2013
A large financial services firm engaged a team from SecureIT to define and execute a strategy for testing key information security-related controls, as well as to design a suite of metrics for measuring and reporting on risk and control trends over time
April 23, 2013
SecureIT’s Greg Kent speaks at the Washington DC ISACA Cyber-security chapter meeting along with the inventor of the SSH protocol, Tatu Ylonen. See http://www.isaca-washdc.org/presentations/2013/201304-session3.pdf
April 4, 2013
SecureIT’s Greg Kent co-authors draft IETF Best Current Practice on Managing SSH Keys
January 15, 2013
E*Trade Financial extended SecureIT’s contract to support the IT risk management and compliance function
December 4, 2012
A large data analytics firms chose SecureIT to drive their SOC 2 readiness initiative for their strategic cloud-based platform