LISTEN TO MIKE CRAIG ON THE VIRTUAL CISO PODCAST
Home Blog Story & Services Contact Courses

About Us:

Story and Services

The Vanaheim Story

With a name rooted in Norse mythology, Vanaheim was the home of advisors, community builders, servants and communicators for the gods of Asgard.

And that's what we do: advise our customers on complex business problems.

Vanaheim Security was founded to help commercial cloud providers navigate the complexities of the FedRAMP process, and to help the federal government increase the number of options available to build innovative solutions for public service missions.

It is our ambition to enhance federal agencies’ trust in cloud services and leverage the many innovations available through an established community.

FOUNDING PRINCIPAL, CEO

Mike Craig

Thanks for stopping by. I'm passionate about reducing the pain of government compliance requirements, and helping create a thriving federal technology ecosystem.

I'm a cloud/cybersecurity leader with over 15 years of experience in government and commercial sectors, and a lifelong teacher. I've been helping companies achieve FedRAMP authorization since 2019.

I'd love to help you navigate federal compliance processes. Your journey really doesn't have to be as hard as it has been for others, you just need a guide. Vanaheim is here to help.

           What We Do           

Strategic Business Advisory Services

Sponsor Engagement and Go to Market (G2M) Planning

Multi-cloud and Emerging Technology Compliance Architecture Support

FedRAMP Documentation Support

Enterprise Team Assessment Preparation

Role-based Training Programs 

We'd love to hear more about where you are in your FedRAMP journey, whether your final authorization is a strategic consideration or a committed initiative that is already underway.

SCHEDULE CONSULTATION

If you want to hear more about what to expect, keep scrolling to check out a recent podcast where Mike breaks down the FedRAMP journey in detail, or visit our other resources.

The Virtual CISO Podcast: A FedRAMP P-ATO: The Good, The Bad, and the Ugly

In order to do wide-scale business within the US federal government, cloud service providers (CSPs) need a FedRAMP P-ATO. CSPs without federal cyber compliance experience often find this a daunting task, even without misinformation and misconceptions obscuring the path.

In this episode, host John Verry sits down with Mike, who provides valuable guidance on what it takes to get a FedRAMP P-ATO, including best practices and common mistakes.

Join us as we discuss:

  • Key considerations to help decide if a FedRAMP P-ATO is worth pursuing
  • How long a FedRAMP P-ATO really takes, how much it costs, and why
  • The three stages of the FedRAMP journey
  • Key participants in the FedRAMP “dance” and how they relate
  • Pros and cons of an agency sponsorship versus the JAB authorization path to a FedRAMP P-ATO
LISTEN IN

Vanaheim is your trusted FedRAMP journey guide

For more detail on the FedRAMP process and its challenges, visit our free FedRAMP resource center, and access our free whitepaper.

For the latest in FedRAMP system architecture and emergent issues, see our blog.

Try our self-paced courses to cover everything you'll need in each FedRAMP journey phase.

 Or, we'd love to chat with you about what you need: Schedule time to talk.