pureFISMA

pureFISMA is a highly-customizable management tool that incorporates applicable NIST standards to empower risk and compliance IT professionals to effectively identify, assess, manage, and mitigate risks, while providing enterprise-wide visibility, oversight, and assurance.  It features a robust and modern user interface using the latest open source technology to provide highly customizable features.

FISMA Capabilities

After assessing the marketplace and analyzing industry offerings, we realized that no other offerings provided all of the capabilities needed in a robust FISMA tool. pureFISMA is our answer to this need, and offers all 16 capabilities, grouped under four key areas:

  • User Functionality – document access, dashboard reporting, custom fields
  • Workflow Management – customization/ updatability, automated notifications, report generation, document storage, data export, measurements/metrics, continuous monitoring
  • Security Features – data protection, role-based access control, user management
  • Performance – real-time users, individual users, storage capacity

pureFisma Technology

pureFISMA is designed to leverage existing enterprise directory services for authentication, including Active Directory (Microsoft), Open Directory (Apple), eDirectory (Novell), Oracle Internet Directory, ApacheDS (open source), and OpenDS (open source).

Additionally, pureFISMA can support multifactor authentication schemes, including complex device identification, mobile (via SMS), and others (may require additional hardware / software).

pureFISMA combines real-time risk insight and workflow management with pre-populated control sets and robust reporting to solve today’s information security oversight challenges:

  • Distributed Risks
  • Lack of Visibility / Tracking
  • Complex Compliance Frameworks
  • Timeliness
  • Assessment & Authorization (A&A) Requirements

pureValue Add

  • Unlimited Number of Users - No account or seat limitations
  • Highly Scalable - Easily adapts to increases in user/data volume
  • Interoperable - Can run on multiple platforms
  • Open Architecture - Allows for future functionality and features to address changes in organizational requirements
  • Simplified Enhancement/Version Deployment - New features are available to all users instantly, eliminates time and effort of distributed, independent upgrading
  • User  Management and Tracking - Custom authentication and authorization
  • Pre-Populated Security Control Definitions - NIST SP 800-53 / SP 800-53(A)
  • Input/Edit Security Control Implementation Statements - Statements mapped to controls, history and audit trail, and policy management
  • One click, detailed reporting - Scope filters, full search capability; linking to POA&M, C&A documentation, and continuous monitoring

Downloads

pureFISMA Framework.pptx

In The Field:

Outbreak: Avoiding Information Security Catastrophes in Cable Fundamentals of Performance Testing
SDVOSB
Service Disabled Veteran Owned Small Business (SDVOSB)

TALK TO US

For more information on our offerings or our company  and how we can put our expertise to work for you, give  us a call at 703.707.9680.