The new NIST AI RMF 600-1 GAI Profile is a full framework to conduct assessments against Generative Artificial Intelligence (GAI) implementations. The 600-1 GAI Profile is built off the 100-1 RMF and includes the same controls with enhanced guidance as to the requirements to fulfill for GAI installations in particular.…
For years, security and compliance have lived in silos: tracked in legacy tools (or worse, via spreadsheets), delivered as disconnected services, and not building on each other. The result? Services that don’t scale. Problems with differentiation. Clients that don’t stick. That’s about to change. Re-Integrate, Apptega’s…
We just made it easier (and faster) to manage vendor risk—on your terms. With our latest update to the Vendor Risk Manager, you can: Upload your vendor lists in seconds: No more one-by-one entry Use your own vendor questionnaires: Bring your existing templates into Apptega to keep your processes consistent and customized…
April 23, 2025: We have now released the final version of the CMMC framework. The new version is v2.13 and we have published the framework, assessment, and task pack (level 1 and level 2). The final rule was published on October 14, 2024 and went into effect on December 16, 2024. While the rule went into effect on December…
The One Where the Knowledge Base Leaves the Severed Floor 📚 New Knowledge Base Starting April 2nd, we’re reintegrating your work brain and your support brain: our Knowledge Base is officially moving into the Apptega Community. No more knowledge silos. No more tab toggling. No more, “Where did I see that again?” Here’s what…
The one where you stopped taking screenshots of cloud security evidence 🔗 Integration with Microsoft Defender for Cloud As much as you may have enjoyed the last season of True Detective, we’re guessing you'd rather not be a detective in real life if your focus is on security compliance. Hunting down evidence in Azure,…
Hi everybody! We’re thrilled to announce the release of three enhanced dashboards in Apptega: Partners, Customers, and Frameworks. These dashboards were designed to give you deeper insights, more granularity, and better tools to manage your compliance programs effectively. Here’s what’s new: 🔹 Partners Dashboard: One Pane…
The Criminal Justice Information Services (CJIS) v6.0 framework will be available on April 1. CJIS is a government framework that was designed to assess the security of controls implemented for law enforcement, national security, and intelligence community partners. The CJIS framework includes 13 core security control…
The one with faster evidence collection & shiny new reports ✨ New Assessment Reports What makes a great report? We think reports should be clear and concise (that’s kinda the point), relevant, and super actionable (think a to-do list on steroids). Our new Assessment Reports hit all three marks, and they look fabulous too,…
We’re excited to announce our Microsoft Defender for Cloud integration—built to make evidence collection faster and easier. This connector with Microsoft Defender for Cloud: Auto-completes security controls tied to your Azure services, eliminating the need for manual evidence collection. Updates your scores across…
It looks like you're new here. Sign in or register to get started.