Our Blog
Discover the latest insights about GRC, FedRamp, and compliance topics.
Deep Dive: Programmatic Reports with the Nabla API, Python, and Bash
Using the Nabla API to automatically generate compliance reports in the time it takes to have breakfast
Worried about CISA ED 26-01? We have a scanner for that
Announcing our new F5 BIG-IP scanner for CISA ED 26-01 compliance. With Mermaid reachability diagrams and no LLMs
Nabla October Changelog
Self-service trial keys ⚙️, templates being cooked 🧑🍳, and /v1/firmware endpoints
You can have your cake and eat it too with the right GRC platform
Many GRC professionals think that there are no options between flexible but manually updated options like Excel and rigid one-sized fits all GRC platforms. What if you can have your cake and eat it too?
Compliance is a snake eating it's tail, and that's a good thing
Drawing parallels between niche concepts to the point it seems crazy (And maybe is) is one of the few perks of having impeccable pattern recognition
5 things FedRamp 20x needs to mass adoption
FedRamp 20x is coming fast, and 2025 is almost over already (I know right?). This means 20x is going to be here sooner than many care to admit, with NIST 800-53 being phased out in nearly a year and 1/2. Here's what FedRamp needs to do to make GRC-as-code work seamlessly
:max_bytes(150000):strip_icc()/Getty_capital_and_capitol-2062515-57b3edb15f9b58b5c23ba3c4.jpg)