Authorization/Ongoing Authorization
- Develop and maintain the Information Security Continuous Monitoring (ISCM) plan for agency
- Implement the ISCM plan for all agency service units and assets, including Federal systems hosted in the cloud environment and contracted services provided by various vendors
- Provide centralized capability for management of agency ISCM data to provide current essential system-level cybersecurity posture
- Assess and determine scale of system ongoing authorizations to operate in the Domain
Remediation Management
- Monitor agency system configuration changes for security posture impact and re-authorization and remediation needs
- Manage and prioritize remediation Plans of Action and Milestones (POAM) for vulnerabilities identified in agency systems
- Provide tracking and reporting tools for all agency system remediation activities
Risk Management
- Provide a comprehensive, agency-wide, holistic approach for addressing risk
- Ensure consistent and effective risk acceptance decisions for agency systems
- Ensure that authorization decisions consider all factors necessary for mission success
- Define the organizational risk posture for the agency Authorizing Official based on the aggregated risk to information systems
SysNet employs our SysCIP®, (SysNet Technologies Critical Infrastructure Protection) methodology, which is unique in the federal Information System Security (ISS) services industry. »READ MORE