Penetration Testing and NIST 800-53

Sep 9, 2021 Continuum GRC 0 Comment

Featured NIST 800-53 compliance. Continuum's 2025 GRC for federal security controls.

In our continuing series on penetration testing, we have discussed different approaches to pen testing the benefits of conducting such tests. Here, we will continue by addressing penetration testing as a practice inside one of the most important security frameworks for federal agencies and contractors: NIST 800-53.

While the core documentation of NIST 900-53 contains hundreds of security controls, one dedicated section speaks to the value and best practices of penetration testing. Here, we’ll discuss how penetration testing plays a role in NIST 800-compliance and how you can incorporate it into your compliance strategy.

Awareness Industries

What Are Tenable and Assured Compliance Assessment Solutions?

Sep 2, 2021 Continuum GRC 0 Comment

Featured ACAS Tenable scanning. Integrate 2025 vulnerability tools with Continuum.

Government agencies and contractors in the supply chain face threats every single day. If you haven’t read the news lately, our national infrastructure and data systems face significant challenges in maintaining the security and integrity of their devices, applications and network resources. When agencies and contractors want to connect to any sensitive system, the Department of Defense requires that they utilize the Assured Compliance Assessment Solution (ACAS).

This suite of vulnerability scanning software provides passive and active search capabilities that promote high levels of network security and compliance while standardizing these tools for organizations no matter where they are at.