Automated STIG ComplianceProduct Name: AutoSTIG Open Source Tool Suite
Product Category: Compliance
Product Website: https://github.com/NetizenCorp/AutoSTIG
AutoSTIG is a free and Open Source product suite that reduces by up to 85% the effort involved in validating and monitoring the compliance of systems such as Windows Server, SQL Server, VMWare, Windows 10, and others with DISA Security Technical Implementation Guides (STIGs). AutoSTIG helps ensure compliance while dramatically reducing the amount of effort required to achieve it. This means validation tasks that once took hours can be completed in mere minutes with exportable reports that are ingestible into tools such as eMASS to prevent documentation errors and missed checks.
In 2018, AutoSTIG was named a "top 5 disruptive technology" for the federal government market by FedHealthIT magazine due to its ability to automate and simplify security compliance.
The AutoSTIG tool was developed to support security engineering efforts for the U.S. Army and is in current use by several DoD customers to perform NIST RMF security control assessments (SCA-V) for achieving Authorization to Operate (ATIO) in record time.