TalaTek Capabilities Statement
TalaTek helps organizations manage cyber risk, strengthen security, and ensure privacy.
TalaTek, a CISO Global company, is a woman-founded organization dedicated to delivering independently and impartially our services in risk management, cybersecurity, compliance, and continuous monitoring with a focus on people, process, and technology. We are a Federal Risk and Authorization Management Program (FedRAMP)-accredited third-party assessment organization (3PAO) and are also accredited by the American Association for Laboratory Accreditation (A2LA) to conduct security controls assessments for cloud systems and to provide advisory services to cloud service providers. In addition, we are a Registered Practitioner Organization (RPO) and cleared as a candidate Certified Third-Party Assessor Organization (C3PAO) by the Cyber AB and are a certified Cyber AB Licensed Training Provider (LTP). TalaTek is a StateRAMP 3PAO, an AWS Validated Public Sector Partner, and ISO/IEC 17020:2012 Certified.
TalaTek holds a GSA MAS contract (GS-35F-399DA) with services offered under the following SINS:
Highly Adaptive Cybersecurity Services (HACS) – 54151HACS
Cloud and Cloud-Related IT Professional Services – 518210C
Information Technology Professional Services – 54151S
and NAICS codes 541511, 541512, 541513, and 541519.
The TalaTek Approach
TalaTek offers expert advisory services in risk management, security, assessment, and compliance. We help organizations strategically protect their data based on business risks and meet ever-expanding regulatory compliance requirements. We deliver unparalleled IT security and risk management based on National Institute of Standards and Technology (NIST), Cyber Security Framework (CSF), and ISO 27001, to name a few.
We specialize in implementing compliance frameworks and solutions to meet Federal Information Security Modernization Act (FISMA), General Data Protection Regulation (GDPR), Health Insurance Portability and Accountability Act (HIPAA), Payment Card Industry (PCI), various privacy standards, and other regulations for our clients.
Combining our team’s security analysis and architecture expertise with our indepth understanding of compliance and regulatory standards, we work tirelessly to deliver accurate, thorough, and detailed assessments and strategic advice to our customers.
Our corporate clients rely on TalaTek’s strategic approach to IT security, risk management, third-party supply chain management, loss prevention, and disaster recovery. Thanks to our track record of success at federal agencies, our government clients turn to our expertise in risk management, governance, and compliance, citing our detailed approach, thorough understanding of their business, and outstanding quality of work.
TiGRIS: Our FedRAMP-Accredited SaaS GRC
Our TalaTek intelligent Governance and Risk Integrated Solution (TiGRIS) is a cloud-based platform that is a FedRAMP-authorized managed software as a service (SaaS). TiGRIS provides efficient and highly scalable services that ensure high quality, consistent, and repeatable delivery across multiple systems, standards, and regulatory requirements for a holistic risk management approach.
Using TiGRIS, we can offer organizations the needed visibility into their risk posture across common, system-specific, and hybrid controls, managing continuous monitoring within both on-premises and cloud-based environments. Stakeholders are kept informed while provided with actionable, risk-based metrics that allow them to prioritize their expenditure of resources based on business risks.
AWS Cloud-Based Architecture
TalaTek cloud engineers are AWS professionals who specialize in designing and implementing state-of-the art, cost-efficient, and secure cloud-based systems. As a FedRAMP 3PAO, we know what it takes to build a secure, functional system that will meet regulatory requirements.
Our architecture review takes a deep dive into an organization’s cloud-based architecture, advises on potential areas of inefficiency and vulnerability, and provides actionable remediations to address those issues. We also offer guidance and suggestions on deployment solutions to help reduce overall costs, ensure data security, and expedite implementation time.
TECHNOLOGY & SERVICES
- Risk Management, Audit, and Compliance Services
- Cyber Security, Penetration Testing, and Social Engineering
- Governance, Risk and Compliance
- FedRAMP 3PAO Advisory/Assessments
- StateRAMP 3PAO Advisory/Assessments
- CMMC Advisory and Gap Analysis
- NIST SP 800-171 Gap Analysis, Boundary Scoping, and Advisory Services
- Third-Party Risk Management
- Vulnerability Management
- Security Policies and Procedures
- Defense Contractors and Integrators