|
|
||||||||
|
|
Information Assurance
- Holistic Approach to Security for Information Technology Systems and Networks based upon:
- Comprehensive Risk Management Process
- Security Certification of Systems
- Development and Implementation of Organizational Certification and Accreditation Process
- Establishment of Trusted Security Domains
- Computer Network Defense
- Defense in Depth
- Testing and Validation of Security Features
- Certification Test and Evaluation (CT&E)
- Security Test and Evaluation (ST&E)
- Manual and automated testing procedures
- Contingency Planning
- Disaster Recovery and Back-up Plans
- Penetration Testing
- Network Security Architecture and Engineering
- Security Awareness Training
- Threat Evaluation and Assessment
- Vulnerability Assessments
- Risk Analysis
- Risk Assessments
- Risk Mitigation Planning
- Network Security Engineering
- Security Testing & Monitoring Services
- Information Assurance cont.
- Contingency Planning
- Continuity of Operations Procedures
- Disaster Recovery Planning
- Security Policy Analysis and Preparation
- Security Awareness Training