So glad you asked...
Who do you work with and what do you do?
Last updated: December 23, 2019
Email: biz@stigian.com
Location: Norfolk, VA USA
Some of the questions we get fairly regularly are answered here, current as of the date to the left.
For the right project - technically interesting, or innovative, we generally can make availability happen. For generic IT or compliance projects (such as ‘do an ATO’), we are happy to refer you to trusted colleagues and partners who specialize in that work.
Probably! We have extensive experience with FedRAMP, NIST, DoD RMF, CMMC, ISO, PCI, NNPI, and many others.
Probably not. While we have extensive hands on experience and technical operations capabilities, and could do that sort of thing, it’s generally a waste of a clients budget to have us do basic system administration hands on bits. Our exception to this is a core focus: building/bootstrapping secure devops pipelines and capabilities.
Probably not. Onsite visits for meetings, conferences, and demonstrations are fine and baked in to our operating model. Onsite work and development is not: Stigian does not do ‘staff aug’ work. Being onsite makes it difficult for most folks to focus on scoping and managing the work, instead of the person. The one exception we’ll generally make for this is work of a classified nature.
The short version: It’s a reference to the DISA STIGs, which were the source of the very first revenue for the company. The long story is best shared over coffee or a beer!