Why the CompTIA Security Trustmark+ is important, how it relates to NIST Cybersecurity Framework and what it means for you.

eTrepid was honored as the first company in Maryland to receive the CompTIA Security Trustmark+ certification. It's a distinction we're very proud of and worked hard for. But what is the Trustmark+ and how can we apply it to you?

The CompTIA Security Trustmark+

The Computing Technology Industry Association (CompTIA) provides standards to the international technology community. The CompTIA Security Trustmark+ certification is an internationally recognized industry credential. It certifies that a cybersecurity company has met a high standard as an industry leader able to demonstrate an active and thorough commitment to data security and quality customer service.

CompTIA only extends its Security Trustmark+ quality assurance designation to companies that uphold the highest standards in data and information security based on the U.S. government's NIST Cybersecurity Framework. The CompTIA Security Trustmark+ is based on the National Institute of Standards and Technology (NIST) Cybersecurity Framework because it demonstrates compliance with key industry regulations that include PCI-DSS, SSAE-16, HIPAA, and others.

Based on NIST CSF: Why?

With today's cybersecurity risks, implementing an effective standalone cybersecurity program is out of reach for most companies and has created a wildly disconcerted approach. In response, NIST created the Cybersecurity Framework (CSF) so private sector companies could have a set of best practices, standards, and recommendations to improve their cybersecurity measures.

Through a prioritized but flexible approach, the NIST CSF is about cybersecurity protections and the resilience of the economy's most critical sectors. The Federal Trade Commission has suggested that all businesses in the U.S. should consider the framework, stating:

"The NIST Cybersecurity Framework helps businesses of all sizes better understand, manage, and reduce their cybersecurity risk and protect their networks and data. The Framework is voluntary. It gives your business an outline of best practices to help you decide where to focus your time and money for cybersecurity protection."

A Unified Front

Due to the lack of universal cybersecurity standards, the NIST CSF gets everyone on the same page with a uniform set of rules, guidelines, and standards, making it easier to share information between organizations for better protection.

The Benefits of the NIST Cybersecurity Framework

  • Superior and unbiased cybersecurity
  • Flexibility and adaptability of the Framework
  • Built for future regulation and compliance requirements
  • Long-term cybersecurity and risk management strategy
  • Bridge the gap between government, technical and business stakeholders

CompTIA Security Trustmark+ Certified

eTrepid was awarded the CompTIA Security Trustmark+ certification in July 2020 for excellence in implementing the NIST Cybersecurity Framework for DoD contractors, the Defense Industrial Base and companies throughout M.D., DC, and V.A.. This means eTrepid surpassed an industry best-practice assessment in areas that include:

  • Security technologies, including firewalls, antivirus/ malware/ spyware, and intrusion detection
  • Vulnerability assessment detection
  • Data encryption
  • Technical employee knowledge/expertise
  • Security clearances and background checks
  • Physical and hardware security
  • Permissions, passwords and other security requirements

We achieved the Security Trustmark+ certification after assessment of our policies, procedures, and operations and how we identify, detect, protect, respond to, and recover from security incidents.

How can we apply this to you?

When you partner with eTrepid, you get a company who adheres to the highest cybersecurity standards. In fact, to keep our CompTIA Security Trustmark+ accreditation, we need to demonstrate an active and thorough commitment to these standards, data security and quality customer service.

With CMMC regulations for compliance coming down the pike, take a step in the right direction by  determining if you are indeed, first in compliance with NIST CSF standards. Contact us today to find out how secure your company is and determine if there are any gaps in information security.



By | September 1st, 2020 |Categories: Blog | 0 Comments
Leave A Comment