About

We provide holistic remote consulting services in the following areas:

Cloud Security Posture and Threat Modeling (STRIDE), Amazon Web Services (AWS), Google Cloud Platform (GCP), Kubernetes, Containers, Infrastructure as Code Automation, DevSecOps, Hashicorp Terraform, Hashicorp Vault, GitOps, CI/CD and Pipeline Security, Software Supply Chain Security Preventative Controls, Detective Controls, SAST, DAST, Red Teaming, Blue Teaming, Purple Teaming, Tabletop Drills and Exercises.

Authoritative sources we use include:

NIST 800-53, NIST CSF, CIS, Cloud Security Alliance Cloud Controls Matrix (CCM), HIPAA, HITRUST CSF, etc.