SilkwormIT was hired to complete an audit of a medium-sized software company to ensure that government-driven security regulations were followed. The company was primarily in the Business-to-Government industry and as such was required to adhere to a strict set of guidelines outlined in the “NIST Special Publication 800-53” which, as you might imagine, can be challenge to interpret. We conducted a thorough audit of all systems, including hardware and software, scanned all internal and external services, reviewed documentation and performed 1:1 interviews to understand existing processes and procedures. After this comprehensive analysis, we produced a report outlining all issues and provided recommendations for remediation, ranging from simple changes like enforcing stronger passwords and two-factor authentication to complex fixes like installing a VPN solution to access all internal systems and implementing continuous integration & continuous delivery.
“SilkwormIT was immediately able to comprehend the actions required. They provided an incredibly thorough report detailing all issues and even provided a comprehensive set of solutions to fix them. The report was not a sales pitch but an objective view of the situation, which helped us figure out how to strategically fix the issues that were identified and pass our NIST SP 800-53 audit.”