img not found!


The Columbia Group’s Cyber Division has a team of DoD 8140 certified professionals available to help your organization identify and manage cybersecurity risk.

Areas of expertise include:

  • Risk Management Framework (RMF)
  • Cybersecurity Maturity Model Certification (CMMC)
  • Vulnerability scanning and remediation
  • Network monitoring
  • Detection and response (EDR, NDR, XDR)
  • Continuous monitoring
  • Threat analysis
  • Security orchestration and automated response (SOAR)

Risk Assessments and Audits

We perform risk assessments based on penetration testing, vulnerability scanning, and social engineering to identify your organization’s risk exposure using the latest industry-standard tools. We recommend mitigation steps and assist with implementation of security controls to reduce exposure by providing real-time monitoring and protection for your networks and applications.

Assessment and Authorization Support

TCG helps you navigate the Assessment & Authorization (A&A) process. We utilize DISA Security Technical Implementation Guides (STIG) checklists to review your system or network security controls, and develop and maintain security documentation needed for your organization.

We have experience with:

  • Obtaining Authority to Operate (ATO) using RMF
  • Creating and maintaining your Plan of Action and Milestones (POA&Ms) in eMASS
  • Developing documentation such as:
    • RMF control policies and procedures
    • Incident response, business continuity, and disaster recovery plans

Cyber Operations and Network Monitoring

TCG designs networks to optimize performance without sacrificing security by recommending VPNs, firewalls, and intrusion detection and prevention systems. We can also recommend Security Information and Event Management (SIEM) systems that monitor your network to identify and respond to threats in real-time.