ConfigOS – Rock Solid, Simple RMF Accreditation and STIG Compliance!
A complete, easy to use software environment for creating, implementing, and remediating security policy, such as the DISA STIG and the CIS benchmarks

FastPath Policy Authoring – Accelerates RMF accreditation by hardening policy controls around an application environment in 60 minutes.
ConfigOS is a flexible Policy Signature authoring system designed to quickly and easily create/tune/extend STIG/policy controls to the requirements of a user and their application environments. Our software creates policies for secure baselines and manages STIG support for the entire STIG and application lifecycle – from pre-production/RMF/ATO through to STIG and application production remediation. The ConfigOS Builder, with FastPath, allows a customer to harden every CAT I/II/III control around an application in typically less than 60 minutes versus the days/weeks/months it takes to do it manually. Additionally, ConfigOS has remediation rollback and special functionality to “bake” STIG POAMs/waivers into its remediation process.

High Performance Scanning and Automated Remediation – The fastest, most complete STIG scanner available, and it is the “easy button” for automated STIG remediation.
ConfigOS STIG 360 manages the complete STIG lifecycle of an application environment. ConfigOS automatically “fixes” STIG policy non-compliances for Windows and Linux systems. ConfigOS can scan 3,000 to 5,000 endpoints per hour and remediate 1,000 to 3,000 endpoints per hour from a single instance of ConfigOS. Add additional instances of ConfigOS, increase capacity. SteelCloud provides tested, documented STIG content so the compliance effort is a snap!

Comprehensive Compliance Reporting – Easy to use XML compliance reporting is a strength of ConfigOS.
ConfigOS provides comprehensive enterprise and individual endpoint XML-based compliance reporting. Additionally, ConfigOS also produces XCCDF output for easy integration with STIG Viewer.

Government Use Cases – Currently operating in all of the above – physical and virtualized – connected and disconnected – private, cloud, and tactical – unclassified and classified – DoD, Federal Civilian, and Vendor.
ConfigOS is agent-less and does not require changes to endpoint application stacks or adding infrastructure – no Internet, no web servers, no database servers, no license servers, no domain controllers, no changes in Active Directory, no STIG waivers. ConfigOS effectively operates in both large and small networks, classified environments, labs, disconnected networks, tactical environments, and FedRamp clouds.

ConfigOS is easy to buy – Available on GSA and other BPAs.