|
|
Information Assurance
|
|
|
|
AISE Solutions understands the need of organizations to develop and implement information
systems that protect and safeguard information to an acceptable level of risk. We
understand the importance of certifying systems, integrating security into the software
development life cycle, and enabling leadership to make informed risk decisions.
|
|
|
|
|
Conduct Certification and Accreditation Activities using the Defense Information
Assurance Certification and Accreditation Process (DIACAP) or the National Institute
of Standards and Technology Special Publication 800 Series guidance.
|
|
|
Conduct Security Risk Assessments and vulnerability assessments in support of Risk
Management.
|
|
|
Prepare Federal Information Security Management Act (FISMA) Reports.
|
|
|
Assist customers in policy development and technology recommendations.
|
|
|
Assist customers in incident analysis and incident response capabilities.
|
|
|
NIST Certification and Accreditation past performance highlights:
|
|
|
|
Certification and Accreditation Lifecycle
|
Highlights
|
|
|
|
System Implementation
|
|
|
|
|
Assist in the development and update of the System Security Plan
|
|
|
Manage and develop test and evaluation criteria for contingency planning
|
|
|
Implement operating system and application level security baselines on system servers
per agency guidance
|
|
|
|
|
|
|
Security Test and Evaluation
|
|
|
|
|
Conduct contingency testing at 24x7x365 computer data centers; monitor and react
to power outages, rollover functions, and system recovery events
|
|
|
Execute pre-accreditation vulnerability assessments using agency assessment tools
|
|
|
Manage and conduct mitigation activities to resolve vulnerability findings
|
|
|
|
|
|
|
Security for Interconnected Systems
|
|
|
|
|
Act as agency liaison to external agency customers for data-sharing requirements
|
|
|
Draft the Inter-Agency Security Agreements
|
|
|
Develop project plans for key milestone activities
|
|
|
Coordinate the development or update of Memorandum of Agreements and Service Level
Agreements
|
|
|
Coordinate the implementation of telecommunications circuits and security perimeter
requirements
|
|
|
Manage the change requests for firewall rule sets
|
|
|
Coordinate Inter-agency test and evaluation of connectivity and system data sharing
functions
|
|
|
Coordinate quality assurance testing of key system data sharing features
|
|
|
|
|
|
|
System Operation and Maintenance
|
|
|
|
|
Assist agency security and operations staff in continuous monitoring activities
|
|
|
Provide subject matter expertise of system and security operations during incident
response
|
|
|
Provide subject matter expertise in agency security requirements for software and
system component modifications
|
|
|
|
|
|
|
