Authorization/Ongoing Authorization

  • Develop and maintain the Information Security Continuous Monitoring (ISCM) plan for agency
  • Implement the ISCM plan for all agency service units and assets, including Federal systems hosted in the cloud environment and contracted services provided by various vendors
  • Provide centralized capability for management of agency ISCM data to provide current essential system-level cybersecurity posture
  • Assess and determine scale of system ongoing authorizations to operate in the Domain

Remediation Management

  • Monitor agency system configuration changes for security posture impact and re-authorization and remediation needs
  • Manage and prioritize remediation Plans of Action and Milestones (POAM) for vulnerabilities identified in agency systems
  • Provide tracking and reporting tools for all agency system remediation activities

Risk Management

  • Provide a comprehensive, agency-wide, holistic approach for addressing risk
  • Ensure consistent and effective risk acceptance decisions for agency systems
  • Ensure that authorization decisions consider all factors necessary for mission success
  • Define the organizational risk posture for the agency Authorizing Official based on the aggregated risk to information systems

SysNet employs our SysCIP®, (SysNet Technologies Critical Infrastructure Protection) methodology, which is unique in the federal Information System Security (ISS) services industry. »READ MORE