Aethon Security

?? MSPs for the Protection of Critical Infrastructure would like to #welcome our new member, Aethon Security... ?? ?? The Aethon team, led by Founder and Lead #CMMC Certified Assessor Derek Kernus, has guided multiple contractors to earn CMMC Level 2 certifications through the Joint Surveillance Voluntary Assessment Program and the company has also earned its own CMMC Level 2 Certification as an External Service Provider. ? Aethon Security is committed to being a leading provider of cybersecurity solutions and service for Critical Infrastructure and is a proud member of the MSP Collective. #NewMember #Membership #MSPCollective Scott Edwards Amy Edwards Brad Mitchell Ed Bassett Jacob Horne Joy Belinda Beland Jana Steen Jason Sproesser

Calling all information technology and cybersecurity professionals! Please join our CEO, Derek Kernus, and Technical Support Manager, Ryen Buchanan, at next week's ISC2 Northern Virginia Chapter monthly meeting at Capital One's Tysons Corner campus where Vishal Chawla of BluOcean Cyber will discuss why outdated third-party risk models are failing SaaS security. It will be interesting to see how this information aligns with the requirements for secure software development being pushed in the Federal space. Membership to ISC2 is not required for attendance, but members can earn CPE credits for their attendance. There is a quality meal at each meeting provided by Capital One and excellent networking opportunities at the post-event social. Hope to see you there! The registration link is in the comments. #ISC2 #CyberProfessionals #InformationSecurity #CyberNetworking #CyberEducation

Big news! Please join us in congratulating Ryen Buchanan on her promotion to Technical Support Manager. Ryen has quickly become an integral part of our team, consistently going above and beyond to support both our customers and colleagues. She has also been instrumental in developing the policies and processes as well as implementing the technology for Aethon's Support Center while supporting our engineering team. Ryen has a positive attitude and collaborative spirit that make her a natural leader. We're incredibly proud to see her take this next step and are excited to see where she will take Aethon's support team and service. Derek Kernus | Katherine K. | Sara Cole | Alex Bennett | Aaron Russell | Steve O’Sullivan | Antonio Del Borrello #Teamwork #LeadershipDevelopment #CustomerSupport #Congratulations

CMMC Compliance Doesn’t Have to Be a Nightmare! Struggling with compliance complexity? We make it SMPL. Cut through the red tape and get?CMMC-certified—FAST. Backed by industry experts, trusted by leaders. ?? Meet us at?#CDCASBIOI?and see how we turn compliance headaches into smooth sailing! Aethon Security + SMPL-C + Gray Analytics #BetterTogether #CMMC #CyberSecurity #ComplianceMadeEasy #CDCASBIOI #SMPLC #SCApexAccelerator

Please join us in welcoming recent George Mason University graduate Antonio Del Borrello to the Aethon Security community as our newest Tier 1 IT Support Analyst! ?? In this vital role, Antonio will be the first point of contact for our valued clients, providing timely and effective technical support to resolve their information technology challenges. We know how crucial it is to have a reliable and responsive support team, and we know Antonio's skills and dedication will be a tremendous asset aligned with those measurement properties. Antonio brings a passion for providing exceptional customer service. We're particularly impressed with his eagerness to learn new technologies, absorb all he can about the CMMC requirements and how they align with this role, and his excitement to join our team. Derek Kernus | Katherine K. | Sara Cole | Ryen Buchanan | Alex Bennett | Steve O’Sullivan | Aaron Russell #NewHire #ITSupport #WelcomeToTheTeam #AethonSecurity #CMMC #NationalDefense #ITJobs

I'm finding many product vendors offering cloud services that could handle CUI and are not FedRAMP Authorized or Equivalent are self-determining they are an External Service Provider (ESP) that is not a Cloud Service Provider (CSP), without knowing the definition of a CSP. The CMMC program defines a Cloud Service Provider in 32 CFR Part 170.4: "?????????? ?????????????? ???????????????? ?????????? ???? ???????????????? ?????????????? ???????? ???????????????? ?????????? ???????????????? ?????????? ???? ?????????? ??????????????????. ?????????? ?????????????????? ???? ?? ?????????? ?????? ???????????????? ????????????????????, ????????????????????, ????-???????????? ?????????????? ???????????? ???? ?? ???????????? ???????? ???? ???????????????????????? ?????????????????? ?????????????????? (??.??., ????????????????, ??????????????, ??????????????, ????????????????????????, ?????? ????????????????) ???????? ?????? ???? ?????????????? ?????????????????????? ?????? ???????????????? ???????? ?????????????? ???????????????????? ???????????? ???? ?????????????? ???????????????? ??????????????????????. ???????? ???????????????????? ???? ?????????? ???? ?????? ???????????????????? ?????? ?????????? ?????????????????? ???? ???????? ???? 800-145 ????????2011. (????????-???????????? ????????)" Some of them are even taking steps to work with C3PAOs to either create a Shared Responsibility Matrix for their product and/or get their environment CMMC Level 2 Certified. It's my opinion they are taking the path of the least resistance, whether consciously or unconsciously, and that C3PAOs should be properly advising them on their status. Product vendors going down the wrong path could cause major headaches for Organizations Seeking Certification (OSC) during their Level 2 assessments. I have great respect for organizations like PreVeil & Cuick Trac who knew they needed to be FedRAMP Moderate Equivalent and took the rights steps to get it done. How is the C3PAO community determining whether a Cloud Service Offering (CSO) that's considered a CUI Asset is from an ESP that's not a CSP or from an ESP that is a CSP? Does this get addressed in your scoping call? It would be very helpful for many stakeholders in the CMMC ecosystem to get clarification on this subject. A-LIGN Ariento Guernsey - Engineers/Architects/Consultants Cherry Bekaert CISEVE ControlCase Redspin, a division of Clearwater CyberNINES?Cybersec Investments Digital Beachhead? Inc Edwards Performance Solutions Eide Bailly LLP Forvis Mazars Gray Analytics Kieri Solutions - Authorized C3PAO KLC Consulting - Authorized CMMC C3PAO KNC Strategic Services, an Authorized C3PAO, Cybersecurity Consulting, Assessments, Managed Services Kratos Defense and Security Solutions MNS Group Peak InfoSec Schellman Sentar Inc. SoundWay Consulting Inc. SP6 Coalfire Federal Wise Technical Innovations #C3PAO #CMMC #CMMCLevel2 #DefenseIndustrialBase #CloudServiceProvider #ExternalServiceProvider

AvePoint gave me the opportunity yesterday to close the Nasdaq market as part of their event unveiling new features and capabilities with their partner platform, Elements. It was an amazing experience that I'm honored to have been invited to as the representative for Aethon Security. AvePoint hosts amazing partner events consistently and it really goes to show me how much the company values its partners as part of its business model. It's evident from the fact that every partner event I've attended over my 4 year relationship with AvePoint has been attended by their CEO, Dr. Tianyi (TJ) Jiang. It's amazing how personable and down to Earth he is - a man of the people! I had a pleasure meeting two newer team members during the happy hour after the event and was genuinely amazed at their enthusiasm about the trajectory of the company and how impressed they were with the tenure of the people that work at AvePoint. It got me thinking about all the people I've interacted with over the past 4 years and every one of them, except one, is still with the organization and has grown their career within the company. It's amazing to see in today's world and is the kind of organization I like partnering with. I also value their partnership because of the entire company's approach to improvement. They seek feedback from not just the end user customers, they also get feedback from the partners and build products for them. I'm unbelievably excited about what is now in the elements portal and what it's going to do for Aethon's CMMC MSSP Service called Guard. These new products are going to make our team more efficient and effective than we've ever been. Thank you to Sam Valme, Morgan Twining, Isaac Vasquez, John Washington, Conor Dean, Vincent Franzonello, Dux Raymond Sy, Mario Carvajal, and countless others at AvePoint who have built and maintain the partner centric culture. I'm constantly impressed how this company keeps striving to bring better and better offerings to market to be a leader in data governance and security. #AVPTSecure #CMMC #Avepoint #DataGovernance #InformationSecurity Katherine K. | Sara Cole | Ryen Buchanan | Steve O’Sullivan | Alex Bennett | Aaron Russell

CUI-CON 2025 was an incredible opportunity to connect with the Defense Industrial Base (DIB) and contribute to the vital conversation surrounding Cybersecurity Maturity Model Certification (CMMC). Educating the DIB on CMMC is crucial for strengthening our nation's defense supply chain, and we're proud to have sponsored an event that plays such a pivotal role in this effort. We believe that by fostering knowledge and collaboration, we can collectively enhance cybersecurity posture and protect Controlled Unclassified Information (CUI). The thoughtfully curated agenda reflected that belief, beginning with covering the regulations and future for the CMMC and CUI programs, then diving into some technical discussions, and wrapping up with C3PAO panels discussing the assessment process and experience. The lunch keynote on Day 1 was any eye opening story from Vishal Amin of Microsoft who shared his personal experience of how a CUI breach during his time in the United States Marine Corps directly impacted his personal life. Our CEO, Derek Kernus, was privileged to share his technical expertise as part of the agenda. He discussed multiple ways organizations can implement multifactor authentication for workstations and servers to meet the requirements of CMMC control IA.L2-3.5.3. Thank you to Matthew Titcombe of Peak InfoSec & Fernando Machado, CISSP, CISM, CCA, CCP of Cybersec Investments for organizing the event, and to all the other sponsors and attendees who made CUI CON 2025 a resounding success. We look forward to continuing to support the DIB with navigating the complexities and implementing the requirements of CMMC and building a more secure future for the United States of America. Katherine K. | Sara Cole | Ryen Buchanan | Steve O’Sullivan | Alex Bennett | Aaron Russell | NeoSystems LLC | KTL Solutions, Inc. | Summit 7 | FutureFeed | CompliancyIT | Edwards Performance Solutions | A-LIGN | SP6 | The Cyber AB | Redspin, a division of Clearwater #CUICon2025 #CMMC #Cybersecurity #DefenseIndustrialBase #AethonSecurity #DIB #ControlledUnclassifiedInformation #SecurityCompliance #InformationSecurity #NationalSecurity

Aethon Security has achieved CMMC Level 2 certification as an External Service Provider (ESP). This achievement underscores our dedication to providing robust cybersecurity solutions that align with the CMMC framework. We are extremely proud of the hard work and dedication our team has put into building a compliant program that's focused on supporting government contractors of all sizes achieve compliance with CMMC requirements. We're fully equipped to support organizations in their CMMC journey. Thanks to our assessment team at Cybersec Investments for a seamless assessment experience. Contact us to learn how our expertise can help strengthen your security posture. Derek Kernus | Sara Cole | Aaron Russell | Alex Bennett | Steve O’Sullivan | Ryen Buchanan | Katherine K. #CMMC #Cybersecurity #Compliance #DoD #ESP #AethonSecurity #Level2Certified

Please join us in welcoming Katherine K. to the Aethon Security team as our new Business Development Manager! ?? ? Katie brings a wealth of experience and a passion for helping individuals and organizations solve complex challenges to Aethon, and we're thrilled to have her on board.?She will be leading our initiatives to expand awareness of our comprehensive services for CMMC Level 2 and NIST SP 800-171 compliance.?This is a critical time for organizations navigating the complexities of the CMMC program, and Katie will play a key role sharing Aethon’s solutions to achieve and maintain compliance. ? Beyond CMMC, Katie will also be a valuable contributor to our marketing and content generation efforts, ensuring we're providing valuable resources and insights to the #DIB. ? Connect with Katie on LinkedIn and welcome her to the Aethon Security family!?We're confident that her expertise and dedication will be instrumental in our continued growth and success. Derek Kernus | Sara Cole | Alex Bennett | Aaron Russell | Steve O’Sullivan | Ryen Buchanan ? #cybersecurity #CMMC #NIST #compliance #businessdevelopment #newhire #AethonSecurity #informationsecurity #SP800171