For corporations that provide solutions and services to government agencies, contract provisions and regulations for IT security and privacy are increasing in frequency, detail and complexity. Service and solution providers must demonstrate compliance with FISMA, NIST or DOD security controls, and provide evidence that plans have been developed, updated and regularly tested. As government increases it use of managed services and on-demand software applications, companies that provide these capabilities must put security and privacy in place in order to avoid loss of current contracts, and be able to demonstrate effective and cost-efficient compliance for future awards.

Our services and solutions are designed to meet the needs of businesses that contract with the Federal Government for IT services, IT solutions, and business process outsourcing.

• Contract IT Security Requirements Analysis and Strategy: SecureIT examines your existing contract or supports your bid for a new government contract by assisting your team to understand national and agency-specific security requirements. We identify key questions and clarifications which have significant bearing on security requirements and resulting costs to your organization.
• Certification and Accreditation: SecureIT performs independent security testing of your system to support the contract requirements for Certification & Accreditation. Our approach is aligned with NIST methodology, as well as awarding government agency policy.
• Information Assurance: SecureIT provides full information assurance services to supplement your organization where necessary, from developing and implementing security plans, to assessing security controls and remediating noted deficiencies.
• System/Network Vulnerability Management: For businesses that provide IT solutions or business process outsourcing for government agencies, SecureIT performs network penetration and system vulnerability testing. SecureIT analyzes your organization’s infrastructure that supports the government contract for purposes of identifying security weaknesses. SecureIT can assist your organization with identifying appropriate mitigation plans that reduce risks to acceptable levels and providing reporting to support certification and accreditation requirements.
• Application Architecture & Vulnerability Assessment: For businesses that develop applications under government contract, we offer cost-effective solutions to assess and remediate software security flaws. Using both dynamic testing and static binary code analysis, we analyze your organization’s software applications for security weaknesses and malicious code.

For additional information, refer to our Enterprise Security, Governance, Risk & Compliance and Audit capabilities.