Certification & Accreditation
Ensuring Complete NIST & DIACAP Compliance Is a Solid Core Competence of MartinFederal
Systems Security & Information Assurance is a big undertaking. Do you ask enough questions that put you at ease? How do your security policies & procedures measure up? What vulnerabilities exist within your infrastructure? Are your personnel properly equipped to handle security failures and information incidents?
Accepting a comfortable level of risk weighed against the life-cycle costs of security operations is a balancing act. At MartinFederal, we use Six Sigma processes encompassed with defined safeguards to ensure that your operation is fully NIST or DIACAP compliant. All of MartinFederal’s Information Assurance (IA) & Certification Engineers meet the requirements set forth in the DoD 8570.01-M, the DoD Information Assurance Workforce Improvement Program. From project managers to onsite engineers and analysts, our personnel possess one or more of the following certifications.
- Program Management Professional (PMP)
- ISO 17799/27000
- Certified Information System Security Professional (CISSP)
- SANS Global Information Assurance Certifications
- Certified Information Security Auditor (CISA)
- Certified Information Security Manager (CISM)
- Certified Intrusion Analyst (CIA)
- Cisco Certified Security Professional (CCSP)
As part of the C&A process, MartinFederal addresses your security program performance. We improve your security posture through continuous security program & performance monitoring. This includes real-time traffic performance monitoring to allow for early detection of anomalous network behavior backed up with known-threat detection and total OSI layer filtration from layered Intrusion Protection Devices and Firewalls. We provide the technical expertise to install and manage heterogeneous cyber defense technologies and certify that your configuration(s) conform to civil, defense and commercial industry standards.
In addition to the above, as part of our C&A processes, MartinFederal provides security assessment and reporting services. Our IA & C&A experts identify your assets, assess their vulnerabilities and protect them. We examine your organization’s policies and test critical systems using the very latest in intrusion detection and threat analysis tools. In most cases, vulnerabilities can be mitigated or avoided when they are identified early. Our security assessment services are nondisruptive to your agency’s workflow. Their modular design assures accurate assessment outcomes no matter where you are in the security program life cycle. A representative set of our modules include the following:
- Security Policy Review
- System Security Architecture Review
- Assets Inventory
- Penetration Test (Internal, External, Wireless)
- Automated Vulnerability Assessments
- Mitigation Road Map
- Management Out-Brief