With the growing use of the internet by people, protecting important information has become a necessity. A computer that is not having appropriate security controls can be infected with malicious logic and thus any type of information can be accessed in moments. Number of infected Web Pages and malicious websites can be seen every day that infects the computer and allow hackers to gain illegal access to other computer systems.
The importance of cyber security in modern Internet age
The internet has become the integral part of today’s generation of people; from communicating through instant messages and emails to banking, travelling, studying and shopping, internet has touched every aspect of life.
Capabilities
- Vulnerability Management
- Certification & Accreditation (C&A)
- RMF/FISMA
- Application Security
- FedRAMP CSP/3PAO Audit
Certifications
- Maintain POA&M
- Security Review
- Impact Assessment
- Stakeholder Management
- Technical Documentation
Past Performances
Office of Naval Research (ONR) University Business Affairs (BD02)
- PKI enable the BD02 suite of applications using Common Access Card (CAC) and DOD approved External Certifying Authority (ECA) (Verisign, ORC, IdenTrust) digital certificates
- Certification and Accreditation (C&A) of the suite of BD02 applications
- Follow DISA Security Technical Implementation Guidelines (STIG) for various technologies and layers like operating system (Windows, Linux), web server (IIS, Apache), application framework (Microsoft .NET,) and database (SQL Server, Oracle) and implement recommended STIGs
- Develop POA&M for known vulnerabilities and develop risk mitigation plans
- Support FISCAM audit of CAMIS
Office of Naval Research (ONR) Office of CIO (OCIO)
- Develop policies and standard operating procedures (SOP) for IA operations including auditing, logging, archiving, scanning, spillage handling, etc.
- Setup and operate infrastructure to comply with FISMA/DIACAP requirements for C&A