Qmulos was highlighted in GovLoop’s recently published guide, All Data, All Uses: How Data and Operational Intelligence Drive Public Sector Mission Successwhich explores some of the challenges facing the public sector and how big data can help solve some of these problems. Additionally, the guide demonstrates how Splunk works with Qmulos to provide cybersecurity and compliance solutions and services for both federal agencies and the private sector.

The following is an excerpt from GovLoop’s guide. You can download the full guide here.

COMPLIANCE

The current situation:

Reporting on security and privacy controls that span a wide variety of technologies – boundary protection, access controls, configuration and vulnerability scanning tools, application logs and machine data – to measure and demonstrate control compliance is difficult and costly. Each technology generates data in different formats and locations and each auditor request involves a different manual procedure to gather evidence.

How Operational Intelligence helps:

With Splunk’s Operational Intelligence, you can search, alert and report on machine data from virtually any source and meet compliance requirements such as audit trail collection, reporting and file integrity monitoring with a single solution.

Splunk in action

The U.S. government is seeing a rise in cyberattacks. One path toward better government cybersecurity? Continuous monitoring of your controls — a way to automate the assessment of your security posture, provide a roadmap for your organization to comply with cybersecurity standards and enable you to pass even the most rigorous audits with greatly reduced effort on aggregating, mapping and prioritizing critical security data required for audit and compliance support.

Meeting and demonstrating compliance is the start to a more secure agency. Theft or loss of confidential information has sparked numerous legislative requirements and standards-based protocols from the National Institute of Standards and Technology. These security controls and data protection requirements impact agencies at the national, state and local levels and all departments concerned with national security.

Splunk, working with the cybersecurity software firm Qmulos, provides cybersecurity and compliance solutions and services for several federal agencies. Their platforms work together to use audit logs and configurations from operating systems, host based agents, applications and network appliances to demonstrate compliance with common frameworks such as the NIST Risk Management Framework (RMF) and the related security and privacy controls detailed in NIST Special Publication 800-53 revision 4 and the Intelligence Community Standard for Enterprise Audit, ICS 500-27.

“Splunk is critical to security and compliance for the federal sector and really all sectors said Matt Coose, Chief Executive Officer of Qmulos. “When we look to solve compliance for federal agencies or the intelligence sector, the problem is basically trying to figure out how to bring data sources of nearly infinite variety together and coalescing that in near-real time to figure out how well you’re implementing required controls and ultimately defending your networks.”

Splunk and Qmulos do this by combining near real-time monitoring of agencies’ systems’ machine data with the context and workflows of an IT Governance, Risk and Compliance (IT GRC) tool, making it a complete compliance monitoring and reporting solution based on the NIST Risk Management Framework. Unlike other IT GRC tools, which are just databases that help organize policies, paperwork and status notes, Qmulos Enterprise Compliance adds near real-time measurement of your systems’ actual compliance state.

“Splunk’s platform is great at ingesting machine data from a variety of sources and different formats,” Coose said. “So as a platform, we feel like their Operational Intelligence combined with our domain expertise is absolutely the right answer to solve cyber compliance issues.”