Content security and governance vendor Egnyte has introduced a solution designed to accelerate compliance with the federal government’s Cybersecurity Maturity Model Certification 2.0.
The new offering combines EgnyteGov—a secure, fully-managed data repository hosted on isolated infrastructure—with FedRAMP-certified public cloud resources from Google and automated consent and data privacy rights management from Truyo. The result, Egnyte says, is a secure foundation for handling Controlled Unclassified Information (CUI) and Federal Contract Information (FCI) that shortens the CMMC compliance process from months to weeks.
“Egnyte for CMMC enables businesses of all sizes to accelerate their compliance efforts by leveraging our highly-secure EgnyteGov environment and a specialized CMMC data enclave,” said Jeff Sizemore, Egnyte’s chief governance officer, in a media statement. “Organizations benefit from a secure solution that not only protects their data per CMMC requirements but also helps to automate much of the detailed work that’s required. In addition, it eliminates the complex issue of demonstrating CMMC compliance year over year through a complete compliance framework.”
Included in the new solution are a “data enclave” pre-configured to identify and avoid potential regulatory violations; a set of auditable, pre-populated configuration artifacts designed to automatically produce roughly 50% of required CMMC documentation; log and event analysis technology, automated auditing and reporting functionality, permission controls, and other assessment tools; and access to a team of advisers for assistance with design and implementation.
Functionality from Truyo allows users to perform self-attestations and collect audit-ready compliance data. Egnyte announced an alliance agreement with Truyo last November.
CMMC mandates will eventually apply to every organization in the “Defense Industrial Base,” a collection of more than 300,000 businesses that contribute to the design, development, production, delivery, and maintenance of weapon systems, subsystems, and components. Though the Department of Defense simplified CMMC last November, fully meeting its requirements regarding CUI and FCI is typically a time-consuming process.
Helping end clients through that process represents a potentially lucrative opportunity for channel pros with the necessary skills and tools. Kaseya, ThreatLocker, and Acronis SCS are three of many vendors beyond Egnyte looking to fill the tools portion of that equation.