ICS Nett fully supported DOD’s statement, “Mutual agreement among participating enterprises to accept each other’s security assessments in order to reuse IS resources and/or to accept each other’s assessed security posture in order to share information.” Using these standards, ICS Nett developed and implemented new methodologies which improved intelligence agency information protection, A&A, document control for in accordance with the DOD Information Assurance Certification and Accreditation Processes such as DIACAP, NIST and RMF.
To better align itself for future missions, which included large organizational restructuring, DOD Intelligence agency acquired the task to facilitate new personnel security investigations, security education, certifications, and awareness training. All while providing integrated security services to the DOD and overseeing protection of national security assets. To safeguard production and assure complete confidentiality, ICS Nett participated in the National Industrial Security Program (NISP) and was able to clear all contractors using DOD 5220.22-M, plus implement Assessment and Authorization (A&A), formerly known as Certification and Accreditation (C&A) with Risk Management Framework (RMF) and other guidelines such as NIST 800-37, NIST SP 800-53, NIST SP 800-53A and CNSSI No. 1253.
After vetting, ICS Nett implemented new systems and software which passed technical compliance validations, verifications, testing, residual risk assessments and client approval. After producing required C&A documentation utilizing FIPS, FISMA, and NIST Templates, ICS Nett reviewed results and made recommendations for mitigations and remediation procedures vulnerabilities and threats. Additional support was provided by using ICS Nett customized project and portfolio management service offerings delivering Enterprise Architecture Services, Systems Engineering, Cybersecurity, and Computer Network Defense Support.
ICS Nett’s course of action consisted of a Cyber Assurance Risk and Compliance (CARC) team, who provided operational capacity for: completing A&A; validation, verification and authorization of new systems; annual system security control assessment; continuous monitoring of networks; validation, verification, and testing of IT hardware and software prior procurement; user account request management.
Intelligence Agency, Quantico VA | Department of Defense (DoD)
Sign Up and Never Miss Out on What We’re Up To