Generic filters

U.S. Department of Energy Selects SteelCloud Software for STIG Remediation

October 10, 2019

Patented ConfigOS Technology to Automate Critical Infrastructure Cyber Compliance

ASHBURN, Va., May 4, 2017 /PRNewswire/ — SteelCloud LLC announced today that it was awarded a contract from a U.S. Department of Energy (DOE) lab to deliver ConfigOS, its patented STIG remediation solution, to accelerate the accreditation of new applications and to automate the security sustainment of deployed infrastructure. ConfigOS dramatically reduces the effort and time to build, test, and deploy STIG-compliant environments.

“Our entire federal government has increased its focus on cyber security and the vital need to protect the nation’s assets,” said Brian Hajost, SteelCloud President and CEO. “For many civilian and intelligence organizations, this means implementing the same NIST security policy standards as the Department of Defense. ConfigOS has dramatically increased RMF accreditation and deployment agility while decreasing the level of effort necessary to achieve and maintain STIG compliance. With today’s budget and timeline pressures, our customers are telling us that they chose our product because ConfigOS automation is the only viable solution for meeting their security mandates.”

ConfigOS is currently implemented in classified environments, tactical programs, disconnected labs, and the AWS commercial cloud. ConfigOS is client-less technology, requiring no software agents. ConfigOS scans endpoint systems for hundreds of STIG controls in under 60 seconds and then remediates them in under 90 seconds. Automated remediation rollback as well as comprehensive compliance reporting and XCCDF output are provided. ConfigOS FastPath was designed to harden every CAT 1/2/3 STIG control around an application baseline in 60 minutes – typically eliminating weeks or months from the accreditation timeline. ConfigOS automates the incorporation of documented policy waivers to ensure flawless automated STIG remediation and compliance reporting.

ConfigOS addresses Microsoft workstation and server operating systems together with environment components such as SQL, IIS, IE, Chrome, and all of the Microsoft Office components including Office 2016. Its OnePass architecture allows ConfigOS to remediate all user profiles in a single pass, providing significant benefits when transitioning to Windows 10. Additionally, the same instance of ConfigOS addresses both Windows and Linux, including Red Hat 7.

To receive more information on ConfigOS, please contact SteelCloud at Video demonstrations of ConfigOS Windows and Linux STIG remediation are available on the Company’s website,, under the “Demos” tab.

About SteelCloud

SteelCloud develops security compliance solutions for government customers and those technology providers that support the government. Our products include automated policy and security remediation tools that reduce the complexity, effort, and expense of meeting government security mandates as well as “gold disks” for AWS cloud and private infrastructures. SteelCloud has delivered security policy-compliant solutions to military components around the world which simplify implementation and ongoing security and mission support. SteelCloud can be reached at (703) 674-5500. Additional information is available at or by email at

Share This Resource:

Leave a comment