SIMP is an Open Source,
fully automated, and extensively tested framework that can either
enhance your existing infrastructure or allow you to quickly build
one from scratch. Built on the mature
product suite, SIMP is designed around scalability, flexibility, and
Initially designed as a turn-key solution for isolated environments, SIMP includes everything you need to get started building repeatable infrastructures at any scale.
The automated subsystems in SIMP keep your systems consistent and protected.
Fully manage the distribution of key materials throughout your environment and be assured that SIMP services are seamlessly protected.
Centralized account management provides effective real-time administration of users.
System-level network protection and logging across all managed systems. All exposed services running on the system have an enforced firewall policy.
Encrypt and authenticate remote system communications. Privileged user access restriction and enforced access control groups help detect insider threats and prevent unauthorized access.
Audit privileged and invalid user activity by actively collecting critical security events across the managed infrastructure.
Authorize the services that you want to run either system wide or selectively by host. Disable and report on services that have been enabled without authorization.
Our team of security and automation experts have worked together to
design and develop SIMP. We've incorporated the industry-specific
considerations needed for regulatory compliance, planning management, and
reporting. If there is a box, we check it.
For a list of capabilities related to your industry, please download the informational brochure.
"Federal departments and agencies shall ensure that all existing privacy principles policies and procedures are implemented consistent with applicable law and policy and shall include senior agency officials for privacy in their efforts to govern and oversee information sharing properly."
Presidential Policy Directive | PPD-21
"Employing effective risk-based processes procedures and technologies will help ensure that all federal information systems and organizations have the necessary resilience to support ongoing Federal responsibilities critical infrastructure applications and continuity of government."
National Institute of Standards and Technology | NIST 800-53
"Puppet is the preferred solution among federal agencies and contractors looking to manage their IT infrastructure with utmost agility efficiency and insight and to automatically monitor changes against baselines to enforce security policy. Maintain your desired state as you have defined it."
"The organization employs automated mechanisms to respond to unauthorized changes. "
CNSS 1253 CM-6(2)
You asked and we've answered. If there is anything you need to know to decide whether SIMP is the right compliance framework for your environment please contact us for more information.
Our preferred methodology; building new infrastructures with
SIMP ensures that you start out minimized with reasonable
partition defaults from the beginning.
To get started with a fresh SIMP installation, you will want to follow the instructions on the associated Confluence Page.
This is also the method to follow if you want to try the latest bleeding edge code.
SIMP is compatible with any Puppet modules that do not have namespace conflicts with the core SIMP modules. We heartily encourage the use of the Puppet Forge for enriching the functionality of the SIMP framework.
Puppet was chosen due to its nature as a declarative language suited to enforcing security settings as part of a comprehensive configuration run. Over time, Puppet has proven to be a successful language for ease of use by administrators and ease of explanation to security staff.
SIMP uses Puppet as part of its core infrastructure. However, you can compliment the SIMP framework with any automation solution that suits your environment. Be aware that you will need to check the Documentation to ensure that you do not run into operational conflicts. Also, as always, be sure to test carefully before deploying operational code!
Whether you are chief of an organization, a systems administrator,
or a developer, we have the tools you need to start on the
path to a secure and compliant IT environment. With a secure
framework in place and SIMP covering the essentials, you can
shift focus to your immediate and long-term business goals. We're
glad you are here and look forward to bringing SIMP to your
Still have questions? Contact us to arrange a product demo or read through our online documentation.
Want to help improve SIMP? Fork us on GitHub!
Drop us a line using the form below to get a response from our team.