Mobile Application and Device Management Pilot for FAA

To better align itself for future missions, which included large organizational restructuring, DOD Intelligence agency acquired the task to facilitate new personnel security investigations, security education, certifications, and awareness training. All while providing integrated security services to the DOD and overseeing protection of national security assets. To safeguard production and assure complete confidentiality, ICS Nett participated in the National Industrial Security Program (NISP) and was able to clear all contractors using DOD 5220.22-M, plus implement Assessment and Authorization (A&A), formerly known as Certification and Accreditation (C&A) with Risk Management Framework (RMF) and other guidelines such as NIST 800-37, NIST SP 800-53, NIST SP 800-53A and CNSSI No. 1253.

After vetting, ICS Nett implemented new systems and software which passed technical compliance validations, verifications, testing, residual risk assessments and client approval. After producing required C&A documentation utilizing FIPS, FISMA, and NIST Templates, ICS Nett reviewed results and made recommendations for mitigations and remediation procedures vulnerabilities and threats.  Additional support was provided by using ICS Nett customized project and portfolio management service offerings delivering Enterprise Architecture Services, Systems Engineering, Cybersecurity, and Computer Network Defense Support.

ICS Nett’s course of action consisted of a Cyber Assurance Risk and Compliance (CARC) team, who provided operational capacity for: completing A&A; validation, verification and authorization of new systems; annual system security control assessment; continuous monitoring of networks; validation, verification, and testing of IT hardware and software prior procurement; user account request management.

Intelligence Agency, Quantico VA | Department of Defense (DoD)