Resources

Data Sheet

What is a CMS Privacy Impact Assessment?

A Privacy Impact Assessment (PIA) is a formal analysis that evaluates how an organization collects, uses, shares, and maintains personally identifiable information (PII). PIAs are mandated by the E-Government Act of 2002 to enhance federal electronic government services.

March 13, 2025

• Compliance
• Privacy Impact Assessment (PIA)

Data Sheet

CMMC Services Solution Brief

Explore a technical overview of Coalfire’s CMMC services, including assessment preparation, security testing, and certification support, helping Defense Industrial Base contractors meet CMMC Level 2 requirements and maintain compliance with evolving federal standards.

March 5, 2025

• CMMC

Data Sheet

Coalfire AI/ML Offensive Security Services

Coalfire’s Cyber Security Services team helps enterprises stay ahead of modern threats with specialized threat modeling and penetration testing for AI/ML systems.

February 14, 2025

• Cybersecurity

Case Study

Procore Taps Coalfire® Expertise to Pursue FedRAMP® Moderate

Procore is a leading provider of construction management software widely adopted across the construction industry for managing complex projects, including power grid modernization, airports, water infrastructure, and data centers. Procore is the singular solution that drives intelligent risk management across all of projects, from preconstruction to closeout.

November 20, 2024

• FedRAMP®
• CMMC

Case Study

Truework Selects Coalfire's Compliance Essentials to Automate and Enhance its Security & Trust Program

Truework recognized the importance of having a strategic partner to drive its long-term compliance success. Coalfire was recommended internally by someone who had worked with them previously and was then evaluated as a potential partner to meet Truework’s unique compliance needs.

October 9, 2024

• Compliance
• Compliance Essentials

Case Study

Effectual Navigates the Complexity of Compliance with Coalfire® and Compliance Essentials

To get to market faster and grow their business, Effectual was looking for a strategic partner to achieve PCI and SOC compliance to gain a competitive advantage. 

June 12, 2024

• Compliance
• Compliance Essentials

Webinar

Threat-informed Exposure Management with Coalfire and Tenable

Coalfire and Tenable have partnered to create a holistic approach to Exposure Management.

April 22, 2025

• Cybersecurity

Webinar

Securing Code and Applications with Snyk and Coalfire Webinar

As AI-driven development accelerates, so do security risks. Coalfire and Snyk have partnered to help organizations shift left and proactively manage vulnerabilities in AI-generated code. 

March 18, 2025

• Cybersecurity

Webinar

SOC 2 and Beyond: Unlocking the Value of HITRUST e1 for Optimized Compliance

As organizations navigate increasing customer and stakeholder demands for security assurances, many are turning to SOC 2. But what if you could take your compliance a step further without doubling the effort? Watch to learn how the HITRUST e1 certification can enhance your compliance program, reduce duplicative efforts, and set your organization up for success.

November 14, 2024

• Compliance

White Paper

ISO/IEC 42001 Readiness Assessment Checklist

Adapting to and understanding AI is no longer just a helpful additive to your business, but a critical move to allow your company to stay up to date. This readiness checklist helps assess yourcurrent state, identify gaps, and guide yourpath toward certification.

May 1, 2025

• Compliance

White Paper

FedRAMP 20X and the Automation of Arrested Development

FedRAMP 20X aims to create efficiencies in the assessment process, and they’re further breaking it down into four (4) components and working groups (Continuous Monitoring, Automating Assessments, Applying Existing Frameworks, Continuous Reporting).

April 14, 2025

• FedRAMP®

White Paper

Risk and Governance Strategies for AI in Healthcare

Artificial intelligence (AI) is transforming the healthcare industry, offering unprecedented opportunities to enhance patient outcomes, streamline administrative processes, and drive medical innovation. AI advancements have transformative potential in healthcare.

March 26, 2025

• Healthcare GRC

Report

The FedRAMP® Opportunity: An Executive Guide for Decision-Making

Understanding the key factors and benefits of pursuing FedRAMP Authorization to Operate (ATO) is essential for any organization looking to enter the federal market or enhance security posture.

September 10, 2024

• FedRAMP®

Report

Houlihan Lokey Features Tom McAndrew's Security Leadership

Global investment bank Houlihan Lokey interviews CEO Tom McAndrew on Coalfire's growth for the bank's Cybersecurity Quarterly Update report. 

August 20, 2024

• Cybersecurity
• Corporate

Report

Coalfire® Compliance Essentials: One Stop Solution for All of Your Compliance Needs

This Technical Validation from TechTarget’s Enterprise Strategy Group (ESG) evaluates Coalfire Compliance Essentials platform and how it helps organizations navigate the complexity of compliance. 

May 7, 2024

• Compliance Essentials

Video

FedGov Today interviews Nate Demuth, VP, Cloud Services on FedRAMP® Roadmap Changes

VP Nate Demuth addresses host Francis Rose's question on how the changes to the FedRAMP Roadmap are impacting how agencies and vendors move forward.

August 9, 2024

• Compliance

Video

DisrupTV Interviews Charles Henderson on Why Security is Broken

Charles Henderson discusses why billions in security spending hasn't stopped attackers and how companies can evolve from anecdotal to programmatic security to take on threats and vulnerabilities.

August 2, 2024

• Cybersecurity

Video

Coalfire®'s RAMPCon™ 2024 FedRAMP® Event Highlights Video

The theme for RAMPCon™ DC 2024 this year was, "Unlocking Innovation and Security".

July 15, 2024

• Compliance