TalaTek Capabilities Statement

Rock Climber

TalaTek helps organizations manage cyber risk, strengthen security and ensure privacy.

TalaTek, a Cerberus Sentinel company, is a woman-founded organization dedicated to delivering independently and impartially our services in risk management, cybersecurity, compliance, and continuous monitoring with a focus on people, process, and technology. We are a Federal Risk and Authorization Management Program (FedRAMP)-accredited third-party assessment organization (3PAO) and are also accredited by the American Association for Laboratory Accreditation (A2LA)[1] to conduct security controls assessments for cloud systems and to provide advisory services to cloud service providers. During our most recent FedRAMP accreditation, we received recognition from A2LA auditors for exceptional maturity of our overall quality system. In addition, we are a Registered Practitioner Organization (RPO) and cleared as a candidate Certified Third-Party Assessor Organization (C3PAO) by the Cybersecurity Maturity Certification (CMMC) Accreditation Body (AB). We are also a StateRAMP 3PAO and an AWS Advanced Technology Partner.

TalaTek holds a GSA MAS contract (GS-35F-399DA) with services offered under the following SINS: 54151HACS, 54151S, and NAICS codes: 541511, 541512, 541513, 541519, and 541618.

The TalaTek Approach

TalaTek offers expert advisory services in risk management, security, assessment, and compliance. We help organizations strategically protect their data based on business risks and meet ever-expanding regulatory compliance requirements. We deliver unparalleled IT security and risk management based on National Institute of Standards and Technology (NIST), Cyber Security Framework (CSF), and ISO 27001, to name a few.

We specialize in implementing compliance frameworks and solutions to meet Federal Information Security Modernization Act (FISMA), General Data Protection Regulation (GDPR), Health Insurance Portability and Accountability Act (HIPAA), Payment Card Industry (PCI), various privacy standards, and other regulations for our clients.

Combining our team’s security analysis and architecture expertise with our understanding of compliance and regulatory standards, we work tirelessly to deliver accurate, thorough and detailed assessments and strategic advice to our customers. Our corporate clients rely on TalaTek’s strategic approach to IT security, risk management, third-party supply chain management, loss prevention, and disaster recovery. Thanks to our track record of success at federal agencies, our government clients turn to our expertise in risk management, governance, and compliance, citing our detailed approach, thorough understanding of their business, and outstanding quality of work.


We offer security and risk management consulting and advisory services centered around our customers’ business priorities. Our TalaTek intelligent Governance and Risk Integrated Solution (TiGRIS) is a cloud-based platform that is a FedRAMP-authorized managed software as a service (SaaS). TiGRIS provides efficient and highly scalable services that ensure high quality, consistent, and repeatable delivery across multiple systems, standards and regulatory requirements for a holistic risk management approach.

Using TiGRIS, we can offer organizations the needed visibility into their risk posture across common, system-specific, and hybrid controls, managing continuous monitoring within both on-premises and cloud-based environments. Stakeholders are kept informed while provided with actionable, risk-based metrics that allow them to prioritize their expenditure of resources based on business risks.


  • Risk Management, Audit & Compliance Services
  • Cyber Security, Penetration Testing & Social Engineering
  • Governance, Risk and Compliance
  • TiGRIS
  • FedRAMP 3PAO Advisory/Assessments
  • StateRAMP 3PAO Advisory/Assessments
  • CMMC Advisory & Gap Analysis
  • NIST SP 800-171 Gap Analysis, Boundary Scoping, & Advisory Services
  • Third-Party Risk Management
  • Vulnerability Management
  • Security Policies & Procedures


  • Government
  • Defense Contractors and Integrators
  • Corporate
  • Education

TalaTek Capabilities Statement

Outlines our technologies, services, markets and more.

» Register for Product Updates


⌖ Enterprise Risk
Third Party Risk
⌖ IT Risk
⌖ Internal Controls
⌖ Compliance
⌖ Internal Audit
⌖ Cyber Security
Gap Analysis

Supported Controls

⌖ ISO 27001/17020
⌖ NIST 800-53 Rev. 4
⌖ NIST 800-53 Rev. 5
⌖ NIST 800-171