SP6 is a niche consulting and software firm with expertise in two overlapping yet distinct domains: Security and cyber compliance.
SP6’s legacy expertise is with log management and security analytics, as well as analytics for technology operations. SP6 emerged as one of the leading North American partners of Splunk, recognized by Gartner as the leader in log management, security analytics (including SIEM), and data analytics. Realizing that Security Operations are overwhelmed with the sheer volume of unmanageable alerts, SP6 has since expanded this expertise to security orchestration, automation and response (SOAR), and the automated validation of security controls. These solutions ensure that an organization’s security tools, configurations, and personnel are performing as intended (and offering recommended remediation where they are not).
From that expertise, SP6 realized that tracking security compliance mandates could be made significantly more efficient by leveraging data and information already collected in an organization’s central log management or SIEM tools. SP6 developed a solution to automate the collection of information tied to the NIST 800-171 security framework – in a continuous, real-time manner. This significantly reduces the onerous task of spending hundreds of manhours manually reviewing security controls and collecting evidence to support cyber compliance, while providing real-time, continuously updating compliance status. Many software companies act as a repository for collecting this information into a web-based tool, but very few automate the actual collection of data and evidence. SP6’s NIST-based compliance expertise extends to consulting services tied to the DFARS and CMMC compliance mandates, including security gap assessments, remediation services, C3PAO support services, and continuous compliance monitoring; all led by experienced CMMC Certified Professionals (CCPs).
More information can be found at www.SP6.io.