Contributor Biography

Home  /  Blogs  /  Contributors  /  Contributor Biography
Stephen Horvath

Stephen Horvath

Joining Telos in 2006, Steve Horvath established a new model for providing professional services in support of the company’s Xacta risk management platform.  He currently serves as Vice President of Strategy and Cloud with a focus on long-term strategic partnerships and solutions spanning the company’s breadth of offerings.  With over 20 years practical experience in the information security domain, Steve is considered an expert in risk and compliance for information technology.  He is a graduate of the University of Maryland, College Park, and maintains both Certified Information Systems Security Professional (CISSP) and Project Management Professional (PMP) certifications.

How Commercial Enterprises Benefit from Updates to NIST Special Publications

Stephen Horvath
August 6, 2020

  In a recent webinar on the upcoming final release of NIST SP 800-53 Rev. 5, NIST Fellow Dr. Ron Ross mentioned an interesting fact: private sector and international adoption of the NIST standards is on the rise. Why might that be? Personally, I think it has to do with

Continue Reading ...

How the Latest NIST Updates Help You Build a More Robust Cyber Risk Management Program

Stephen Horvath
August 4, 2020

A look back on a recent conversation with Dr. Ron Ross from NIST.

Continue Reading ...

NIST SP 800-53 Rev. 5 – One Ring to Rule Them All

Stephen Horvath
April 9, 2020

In the world of compliance, some very good news was announced by NIST related to their consolidated and comprehensive control catalog, Special Publication 800-53.  Revision 5 (Rev. 5), which has been in the works for a couple of years now, was released as a Final Public Draft last month, which means any changes from this point forward until final publication should be minor.

Continue Reading ...

Weakness Invites Attack: Cybersecurity Vigilance in the Time of Coronavirus

Stephen Horvath
March 17, 2020

It’s a difficult job to be a cybersecurity professional, especially if you’ve been one for a while.  It skews your sensibilities, and at least for me, has turned me into a fairly risk-averse person. 

Continue Reading ...

Rackspace, AWS and Telos: Reducing FedRAMP Authorization Effort by Over 80%

Stephen Horvath
February 14, 2020

Approximately four years ago, Telos began working with AWS to enable Xacta to both integrate with and run on the AWS cloud. About two years after that, understanding how difficult the FedRAMP process can be, we launched an effort to greatly reduce the barrier to entry for organizations wishing to sell quality software as a service (SaaS) to the federal government.

Continue Reading ...

Hyperscale Security Data for Continuous Risk Monitoring

Stephen Horvath
June 6, 2019

If you’re planning to attend AWS PSS DC next week, I hope you’ll join us for our session. It will be a technical conversation on how the exponential growth of data, and other challenges drove the development of the new framework and architecture of Xacta.io.

Continue Reading ...

NIST RMF Workshop: Approaches to SDLC Risk Management

Stephen Horvath
September 28, 2017

The software development life cycle (SDLC) is a considerable topic of conversation as it relates to cybersecurity.  In fact, many features of our Xacta 360 product have been built to aid developers in understanding exactly what information assurance controls they are responsible to comply with as they build systems that will be deployed in the federal government.

Continue Reading ...

IT Industry Says of the Cloud: Look What We Can Do, Securely.

Stephen Horvath
January 24, 2017

My perspective on the cloud has shifted. I have admiration and respect for organizations like AWS that have defined a market by making the incredible achievable – not by selling a solution, but by promoting the idea that individuals can invent incredible things, and giving them the platform to do so.

Continue Reading ...

Cloud Compliance at AWS Public Sector Summit 2016

Stephen Horvath
June 14, 2016

Telos and AWS can help streamline the cloud compliance process by dramatically reducing controls documentation and validation. Faster to cloud, means faster to mission, production, and value.

Continue Reading ...

Pen-testing Security Solutions Is as Valuable as Pen-testing Security Environments

Stephen Horvath
May 25, 2016

Pen-testing is just as valuable for vetting an IT security offering as it is for vetting the security of an IT environment.

Continue Reading ...

Tomorrow’s Cyber Problem

Stephen Horvath
July 13, 2015

In a world where breaches are commonplace, it’s imperative that we develop solutions to verify the integrity and authenticity of data and information.

Continue Reading ...

Effective cyber defense is more about mindset than budget

Stephen Horvath
March 19, 2015

Implementing an effective cyber defense program is not out of reach for small to medium sized organizations. More important than size of budget, is having the correct mindset and processes for training security professionals, preventing attacks, and responding appropriately when, not if, they occur.

Continue Reading ...