MSP technology provider N-able has unveiled an expanded set of global compliance initiatives and designated resources, designed to help fuel cyber resilience and readiness for its partners across a growing number of cyber security-focused compliance frameworks.
Coming on the heels of the finalised Cybersecurity Maturity Model Certification (CMMC) 2.0 regulation, the initiatives extend ongoing product security, cloud infrastructure, and operational enhancements for the overlapping controls in CMMC 2.0, NIS2, Cyber Essentials, Essential Eight, and other like-minded cyber security frameworks.
“We don’t view compliance as a check box. It’s about being prepared at all levels, and it doesn’t end with a particular regulation,” said Dave MacKinnon, N-able chief security officer. “CMMC 2.0 is but one example of the increased focus on accountability, but is applicable to a growing list of global cyber security frameworks. We are focused on secure by design principles, to help ensure cyber resilience for our partners, their customers, and our full channel, across all regions.”
The set of initiatives include N-able NIST 800-171 Attestation, which maps a number of security measures to help N-able’s partners more easily meet requirements for securely managing controlled, unclassified information, necessary for CMMC 2.0 while furthering cyber resiliency best practices.
There is also FIPS 140-3 expansion, a continued build-out within core products through the adoption of federally approved encryption libraries and algorithms.
In addition, enhanced audit logging adds tracking for both logins and digital asset changes, furthering N-able’s commitment to the CISA Secure by Design Pledge.
And a separated hosted environment initiative is designed to specifically meet controls for CMMC 2.0 and others regulations.
A Compliance Resource Center includes expert blogs, content, and resources, such as checklists designed specifically for IT service providers. N-able is also forming a Global Compliance Advisory Council.
N-able already holds key attestation reports for SOC 2 Type II and HIPAA Type 1 across its core products, and an ISO 27001 certification as well.