|
Information Assurance (IA)
Information Systems Security - We use a multifaceted approach of overlapping security controls, system monitoring & assessment, and timely incident response to ensure the overall security of a client's information. We developed the following practices which we feel are necessary to reasonably safeguard confidential information for our clients.
Integrity - Information should have an identifiable source to confirm its legitimacy and sensitivity.
Data Review - All information should be reviewed and classified according to its use, sensitivity, and importance.
Access Controls and Transfer of Data - Access Controls must be in place to identify and authenticate requests to access information, and to determine if the requesting entity has the proper right to access data.
Certification & Accreditation Transition - DoD Information Technology Security Certification & Accreditation Process (DITSCAP) transition to DoD Information Assurance Certification and Accreditation Process (DIACAP). We assist with the transition from DITSCAP to DIACAP or the maintenance of the DITSCAP process which our clients currently have in place. We remain current on the changes and new requirements to ensure our clients remain up to date.
We perform, or assist our clients with the conduct of their Certification & Accreditation process so that the organization can maintain its Authority to Operate (ATO).
Continuity of Operation Plans (COOPs), Procedures, and Policies - In today's hostile cyber-environment, our clients need a support element which can help them recognize & plan for threats, and evaluate proposed engineering changes which may be harmful to its networks or infrastructure.
Education, Training, and Awareness Programs - Training is vital to our clients. We provide our clients with training or assist them in establishing their own education, training, or security awareness programs.
Technical Security and Subject Matter Expertise - CLD leverages its expertise in security standards and regulations to provide security planning support, assessment of security risks, preparation of responses to security related data calls (e.g. Privacy Act responses) and the tracking of Plan of Action and Milestones (POA&M).
We work with you to develop an IA program that works for you!
|
|
