Exostar Helps DoD Suppliers Mitigate Risk and Ease Compliance Burden with New Policy Management Solution
HERNDON, VA, July 9, 2019 – Exostar, the leader in trusted, secure business collaboration in highly-regulated industries including aerospace and defense, life sciences, and healthcare, today announced the launch and general availability of Exostar PolicyProTM, an innovative Software-as-a-Service (SaaS)-based policy management solution. Exostar PolicyPro extends the company’s risk management suite by allowing organizations throughout the DoD supply chain to quickly assess, score, and build policies that comply with the security controls identified in standards such as Special Publication (SP) 800-171 issued by the National Institute of Standards and Technology (NIST).
“Many suppliers lack the time or in-house resources needed to create and maintain the security policies mandated by NIST 800-171 and similar standards,” said Stuart Itkin, Exostar’s Vice President of Marketing and Product Management. “Engaging third-party consultants or professional services expertise requires a significant budgetary commitment. Exostar PolicyPro offers an intuitive interface and an intelligent engine that any organization can use to reduce the time, effort, and cost of policy development and assessment.”
Organizations face a significant policy management challenge with potential consequences for non-compliance. NIST SP 800-171 alone identifies 30 distinct policies across 20 security controls needed to protect information from compromise. Exostar PolicyPro, powered by proprietary technology developed by ISMS Applications, leverages artificial intelligence, machine learning, and semantic technology to help overcome the challenge. The solution enables suppliers to create new, customizable policies that accelerate the compliance timeline or to evaluate and score existing policies, identifying key elements not included and areas of improvement necessary to achieve compliance.
With Exostar PolicyPro, organizations receive a policy management solution designed to deliver ongoing return-on-investment. Its digital ledger records all transactions chronologically, so organizations can accurately track all policy development and changes over time. Its SaaS architecture enables organizations to archive all policies in a single repository, promoting consistency and version control as policies are updated and evaluated to keep pace with evolving security requirements and standards, such as the forthcoming NIST SP 800-171 Revision 2.
Exostar, a Gartner Cool Vendor, offers cloud-based solutions that help companies in highly-regulated industries mitigate risk and conduct business by collaborating securely, efficiently, and compliantly with their partners, suppliers, and customers. By delivering connect-once, single sign-on access to a community that spans over 150,000 organizations in more than 150 countries worldwide, Exostar strengthens security, reduces expenditures, and raises productivity so its customers can better meet contractual, regulatory, and time-to-market objectives. www.exostar.com.
About ISMS Applications
ISMS Applications is the premier provider of technology-assisted compliance solutions to the small- and medium-sized (SMB) market. ISMS Applications’ tools incorporate artificial intelligence and machine learning to allow companies to more quickly and cost-effectively achieve and maintain compliance with security standards so they can remain in the supply chain and better serve their customers.
To learn more visit: https://www.ismsapps.com
(703) 793-7735 (o)
(703) 624-4675 (m)
Cybersecurity Maturity Model Certification (CMMC)
ISMS Apps Technology
The announcement of CMMC in Spring 2019 created confusion for contractors and suppliers regarding cybersecurity and compliance requirements. With the release of CMMC V1 and its implementation plan, it’s now clear that NIST 800-171 isn't [...]
With the release of the Cybersecurity Maturity Model Certification (CMMC), government contractors have asked, "How much will certification cost?" The Office of the Under Secretary of Defense for Acquisition & Sustainment, Cybersecurity Maturity Model Certification, [...]
According to an article in Federal Computer Week (Pentagon finalizes CMMC standard for contractors), the Pentagon has released the official version 1.0 of the Cybersecurity Maturity Model Certification (CMMC) standard that Department of Defense (DoD) [...]