Penetration Testing, RMF based Risk Assessment, and consulting support and service to help Texas state agencies and educational institutions comply with Texas Security Standard TAC 202.
We help assess your organization with Texas TAC 202 Requirements
TAC 202 NIST RMF Risk Assessment
A risk assessment will evaluate the effectiveness of your entire security program and test your internal and external defenses using real-world attack scenarios.
Readiness Assessment Report
A controls gap assessment is designed to test your organization against each of the TAC 202 security controls and prepare your organization for audit.
TAC 202 Penetration Test
Designed to fully meet the requirements of Texas TAC 202, our network and web application penetration testing will validate the effectiveness of your security program by testing it against real-world attack scenarios.
Continuous Monitoring
We work with your technical teams to help develop a plan to meet your continuous monitoring requirements, and help you stay on top of your 30-60-90 day patch cycles.
Custom Framework Mapping
NightLion has developed proprietary compliance framework mapping tools to help your organization satisfy multiple audits without wasting redundant business resources.
Project Planning, Program Liason Support, SSP and Document Development
We will work with you and your organization to develop a technology agnostic managed security program to help satisfy control requirements.
In The Media
Bloomberg interview with Founder Vinny Troia
Security Controls for Texas Information Security Standards
TAC202 is a freely available security standards framework that can be adapted and applied to many different organizations looking for guidance in securing their environment. The two different variants of the standard are Texas state agencies and Texas State Universities.
— According to the Texas Department of Information Resources
Cybersecurity Blog
The latest news and insights into the world of cybersecurity
Case Study
Medical & Healthcare Industry
Night Lion provides IT audit and security control validation for Managed IT provider Specializing in Medical and Healthcare Systems