Aquia

One of those *pinch us* moments. We are beyond honored to share that we have been named the 2024 Service-Disabled Veteran-Owned Small Business (SDVOSB) of the Year by the U.S. Department of Health and Human Services (HHS) - HHS Office of Small and Disadvantaged Business Utilization (HHS OSDBU). 🙌 Our CEO, David Maskeroni, accepted the award on our behalf today at the Centers for Disease Control and Prevention’s campus in Atlanta, calling it a testament not just to our team's dedication but also to the vision we've pursued from the outset. “My time as a senior leader at CMS instilled in me an imperative for excellence in government services. It is this foundational experience that has guided Aquia's mission to innovate and enhance government operations for the betterment of the American people. Winning the SDVOSB of the Year for the Department of Health and Human Services is a powerful affirmation of our commitment to making a tangible, positive impact on public service.” Learn more in today’s press release >> https://lnkd.in/gQCtGC2e We would also like to share our sincere thanks to Anita Allen for putting us forth for the award. 💙 #SDVOSB #governmentcontracting #govcon #cybersecurity #cloudsecurity #digitaltransformation John Sasser Chris Hughes Nick Sinai Maria Roat Glen Day Rohan Bhobe AWS Partners

Let's talk about SASE, baby ✨ As organizations increasingly move their applications and data to the cloud, the need for a security model that can protect these assets in a dynamic and scalable manner becomes paramount. The cloud-native architecture of Secure Access Service Edge (SASE) ensures that security measures can scale with the business and adapt to the changing threat landscape. Today on our blog, Aquia's Chief Growth Officer Kalid Tarapolsi walks us through the benefits and best practices for implementing SASE, along with a prime example of one government agency doing it right. 👏 Check it out >> https://lnkd.in/eNj7pH9R #sase #cloudengineering #cybersecurity #cloudsecurity #govcon #itmodernization #digitalmodernization

Attending SANS Institute CloudSecNext Summit in September? You won't want to miss our VP of Cloud Engineering, Dakota Riley's, presentation on the managed kubernetes service offerings across Amazon Web Services (AWS), Microsoft Azure, and Google Cloud Platform. In his talk, Dakota will explore the identity integrations between each of the cloud providers and their managed kubernetes flavors (at a code level to dispel any ambiguity on where the cloud provider APIs work with the managed clusters to provide authentication). He'll also explore how access is granted to cloud identities, what boundaries can be crossed, potential abuse cases, and more. Can't make it yourself? Tag someone you know who may be interested in attending! 📆 Monday, Sept. 30, at 3:10 p.m. MT #kubernetes #cloudsecurity #cybersecurity #cloudengineering #csp #aws #azure #gcp

Earlier this month, the Department of the Air Force Chief Information Officer published a 27-page strategy detailing several potential issues in transitioning to zero trust (a federal mandate): 1. Institutional resistance to the massive cultural shift required 2. Lagging development of tools for automated data tagging, labeling, and management 3. Nascent state of endpoint cybersecurity for non-IT equipment like IoT devices and weapons systems 4. A lack of industry open standards leading to proliferation of proprietary solutions and danger of vendor lock-in 5. The need for a complete refitting of Air Force data centers which the department can’t afford until 2028 6. Operational blind spots Air & Space Forces Magazine spoke with our president and co-founder (and former Air Force staff sergeant) Chris Hughes about the shift and the importance of fostering a zero trust culture. Check it out >> https://lnkd.in/ekR-JdUk Learn more about how we are helping federal agencies adopt a zero trust strategy >> https://lnkd.in/ew8kfBFF #zerotrust #applicationsecurity #appsec #securityarchitecture #govcon #airforce #cybersecurity #digitaltransformation #itmodernization #digitalmodernization

Please join us in welcoming Theresa Campbell to the team as associate data analyst! Theresa brings a diverse background of database management, metrics reporting, and data analysis to her role at Aquia, with extensive experience extracting and analyzing data from different sources. A true multi-tasker, Theresa has an intense desire to learn new analytical and technical skills, so we think she’ll feel right at home here at Aquia! In her free time, Theresa enjoys participating in bowling competitions. 🎳 (We had a joke about bowling, but we'll spare you. 😉) Welcome to the team, Theresa! #newhire #culture #bestplacetowork #greatplacetowork #cybersecurity #govcon

Modern cloud security requires grappling with diverse data sources, including cloud misconfiguration findings, vulnerability reports, threat detection alerts, and outputs from various security tools. These individual tools typically offer insight into specific aspects of your organization's security stance, but frequently require additional context from other tools or environments to provide a comprehensive view of actual risks. What if you could leverage something for real risk quantification and prioritization across your environment? 🤔 Oh, wait, you can! 😅 Our VP of Cloud Engineering, Dakota Riley, spoke at last month’s Amazon Web Services (AWS) Midwest Community Day where he shared how you can leverage Amazon Security Lake to do just that in AWS environments. Check out the recording >> https://lnkd.in/e5SnR_BE #awspartner #awscloud #cloudsecurity #securitylake #cloudengineering #cybersecurity #engineering

Cloud misconfiguration is of the most serious threats in cloud security today. Many users assume the cloud is an inherently secure environment, but the shared responsibility model of the cloud says otherwise. 👇 While cloud service providers are responsible for securing the cloud itself, customers are responsible for securing their workloads and data in the cloud. Threat modeling provides a systemic approach for enumerating potential threats, devising mitigations, and prioritizing them for maximum impact on the overall security posture of the workload. Today on the blog, our threat modeling lead Robert Hurlbut details the four questions he always asks when building a threat model (and he's built a lot of them 😅 ). Check it out >> https://lnkd.in/eXpMFcTB #threatmodeling #cybersecurity #applicationsecurity #appsec

💡 Memorandum M-24-14: Administration Cybersecurity Priorities for the FY 2026 Budget Last week, the Executive Office of the President in partnership with the Office of Management and Budget and the Office of the National Cyber Director, The White House released Memorandum M-24-14, outlining its cybersecurity investment priorities for the fiscal year 2026 budget submissions. Today on our blog, Aquia security architect Mackenzie Wartenberger breaks down the clear and targeted guidance the memo provides for federal agencies and the industries that support them. Check it out >> https://lnkd.in/eqxYimDX #govcon #executivememo #cybersecurity #zerotrust #opensource #government

What is GRC engineering? (But keep it brief!) 👇 Our VP of Governance, Risk, and Compliance, Lloyd Evans 🌩, shares a 2-minute overview on what GRC engineering is and the role it plays in aligning organizational objectives with risk management and compliance. #grc #compliance #cloudengineering #grcengineering #cloudsecurity #cybersecurity

We are excited to welcome Payson Chadrow to the team as Data Analyst! In 2020, Payson decided to make a “long-awaited” career change by going through an extensive data science bootcamp. He got his start by helping a classmate get a sports analytics startup off the ground, then landed a full-time role as a data engineer where he did a mix of engineering and analytics. He has since been serving as a data engineering consultant. Outside of work he enjoys taking his pup to the dog park, watching bad movies, and pretending he’s good at playing the drums. 🥁 Welcome to the team, Payson!! #newhire #culture #bestplacetowork #greatplacetowork #cybersecurity #govcon