Move to RMF Accelerates Demand for ConfigOS STIG Compliance Software

SteelCloud has experienced unprecedented demand for its STIG remediation software in the 2nd half of 2016, primarily from Department of Defense mission partners moving to RMF (Risk Management Framework).

In addition to its typical DoD and large integrator customers, new demand for ConfigOS has increased amongst technology suppliers, software vendors, and cloud SAS solution providers looking for the STIG ‘easy button.’

Brian Hajost, SteelCloud President and CEO
Brian Hajost, SteelCloud President and CEO

“Customers come to us with problems that typically revolve around resource requirements, cost constraints, and ultimately time constraints, that render the traditional manual approach to IA to be inadequate” said Brian Hajost, SteelCloud President and CEO.

“The dramatic increase in the number of systems that now have to go through the RMF accreditation process has amplified the need with every mission partner to automate and reduce costs.  Our customers appreciate that ConfigOS is simple to install and support and provides concrete results – the very first day.”

ConfigOS is currently implemented in classified environments, tactical programs, disconnected labs, and the AWS commercial cloud.

ConfigOS is client-less technology, requiring no software agents.  ConfigOS scans endpoint systems for hundreds of STIG controls in under 60 seconds and then remediates them in under 90 seconds.


Automated remediation rollback as well as comprehensive compliance reporting and XCCDF output are provided.  ConfigOS FastPathäwas designed to harden every CAT 1/2/3 STIG control around an application baseline in 60 minutes – typically eliminating weeks or months from the accreditation timeline.

ConfigOS automates the incorporation of documented policy waivers to ensure flawless automated STIG remediation and compliance reporting.

ConfigOS addresses Microsoft workstation and server operating systems together with environment components such as IIS, IE, Chrome, and all of the Microsoft Office components including Office 2016.

(See how fast and easy our patented compliance tool, ConfigOS, can remediate a Windows 10 system to the newest DISA STIG in just 60 seconds. Courtesy of SteelCloud and YouTube)

Its OnePassäarchitecture allows ConfigOS to remediate all user profiles in a single pass, providing significant benefits when transitioning to Windows 10.  Additionally, the same instance of ConfigOS can also address Red Hat and other versions of Linux.

Additional video demonstrations of ConfigOS Windows and Linux STIG remediation are available on the Company’s website,, under the “Demos” tab.

SteelCloud logoSteelCloud develops security compliance solutions for government customers and those technology providers that support the government.

Our products include automated policy and security remediation tools that reduce the complexity, effort, and expense of meeting government security mandates as well as “gold disks” for AWS cloud and private infrastructures.

SteelCloud has delivered security policy-compliant solutions to military components around the world which simplify implementation and ongoing security and mission support.