Information Security

Information Security Services are performed by the Information Security Branch, designated a Shared Service Center for Certification and Accreditation (C&A) of information systems by the Office of Management and Budget. Our certified security professionals are experts in computer security, information assurance, and security awareness. They are qualified in all areas required under the Department of Homeland Security’s Information System Security Line of Business (ISSLOB). Our approach seeks to integrate C&A into the system development lifecycle, which assures our customers that their critical assets are securely maintained and adequately protected.

Services offered include:

• C&A of systems security
• Assessment and Authorization (A&A) necessary to receive Approval to Operate (ATO)
• Information technology security awareness, privacy, and role-based training
• Privacy assessments, systems of records notices, and development of privacy awareness programs
• Privacy awareness presentations to ensure adequate protection is in place for Personally Identifiable Information (PII)
• Assistance in meeting Federal Information Security Management Act (FISMA) requirements and responding to audits
• Security Test and Evaluation (ST&E), vulnerability assessment, and ethical hacking/penetration testing
• Project budgeting
• Continuous monitoring

Offered to:

All federal agencies

Performance:

90% of C&A/A&A projects are recommended for ATO without documentation changes.

90% of projects will be delivered within budget.

Rate:

By agreement per customer

Contact:

301-443-0881; dara.murray@psc.hhs.gov