Product launch

Pivot Point Security Unveils Refined Version of Compliance, Audit Preparation Services

New Jersey-based Pivot Point Security, an information security advisory firm, announced the launch of its Federal Risk and Compliance “FedRisk” practice to help organizations doing business with federal agencies meet their unique and complex cybersecurity attestation and compliance requirements.

FedRisk takes a targeted, “data first” approach that empowers clients to define and execute on their business goals, “with security as a strategic enabler, not just a cost,” Pivot Point said Friday.

The company said that FedRisk is a refinement of its longstanding practice of providing compliance and audit preparation services around NIST 800-171/DFARS, NIST Cybersecurity and Risk Management Frameworks, CMMC, FedRAMP and other federal government regulations.

In a statement, Elzar Camper, director of solutions and practices at Pivot Point, said that FedRisk allows the company to offer the same high-quality, risk-based, advisory services while simplifying the client’s authority to operate, cyber incident response and reporting, and attestation requirements with a targeted approach.

The FedRisk practice gives companies a choice of engagement models to confidently achieve success whatever their timeline, control maturity, resource needs, and budget, Pivot Point said. Each model encourages a focus on defining the sensitivity of the data an organization has, where it is stored or processed, and how it is accessed or used, as the foundation for scoping the environment, assessing risks, and implementing controls.

Camper said that while FedRisk is a new name, it is founded on expertise that the company has been developing for the last 20 years. He said it is becoming increasingly clear to customers that a data-centric approach to information assurance is not only needed but is essential to enable an organization’s long-term business objectives.