SteelCloud offers STIG remediation tools for AWS GovCloud
Agencies using Amazon Web Services’ AWS GovCloud can now take advantage of SteelCloud's automated policy solutions for STIGs, or Security Technical Implementation Guides.
SteelCloud, which develops security compliance solutions for government, announced it had received approval to offer GoldDisk Plus and ConfigOS on Amazon AWS GovCloud, an isolated, secure AWS Region designed for agencies putting sensitive applications in the cloud.
GoldDisk Plus is a STIG-hardened Windows 2008 R2 64-bit Amazon Machine Image that allows customers to quickly establish STIG-compliant servers in the AWS cloud environment. The "plus" in GoldDisk Plus is ConfigOS, a tool for STIG policy remediation of production servers using an XML policy signature.
The traditional multi-day STIG policy update and testing process now takes as little as five minutes, reducing server security policy maintenance expenses by over 70 percent, according to the AWS marketplace description. GoldDisk Plus allows government customers, and organizations that support them, to cut the cost and effort of launching and maintaining compliant systems in the Amazon cloud.
The company aid it would also make available its "Builder" technology, which allows a customer to harden a system around an application in under an hour.
"In a just completed DOD implementation on AWS, we demonstrated that our automated STIG remediation tools dramatically accelerate the creation of a secure compliant hardened environment in less time and using fewer resources than legacy approaches,” said Brian Hajost, SteelCloud president and CEO.
“Moving our technology onto AWS GovCloud is the next step in helping make the commercial cloud more accessible to security conscious government customers.”
GoldDisk Plus and ConfigOS are available in the AWS Marketplace and in AWS GovCloud (US).
Connect with the GCN staff on Twitter @GCNtech.