DoD DIACAP Security Assessment

The objective of this service offering is to provide InfoSec consulting assistance and expertise to ensure clients are meeting the stringent DoD DIACAP guidelines. InfoSec consultants who are highly skilled in the DoD DIACAP audit guidelines and requirements will perform an assessment of current IBM mainframe security system, with specific emphasis on DoD regulations The assessment is based upon a competent and professional review by a senior InfoSec security consultant of the existing security architecture, operation, organization and security audit findings.

  • Install and run the DoD-supplied Security Readiness Review Evaluation Scripts (SRR) on the mainframe(s) under review
  • Download the output and perform the initial analysis from the Security Technical Implementation Guides (STIG)
  • Provide a prioritized list of the DIACAP findings (from critical to minor)
  • Provide DoD-required documentation for assessment phase

Once the assessment is complete, InfoSec can provide you with a comprehensive remediation and implementation project. When managed by InfoSec, this will include drafting the documents required by the DoD to show the items have been fixed, or are covered by adequate compensatory controls. We can also provide insight on what DIACAP assessment items will not be accepted by compensatory controls, and provide you with cost/benefit analyses on a variety of remediation options.

  • Develop an in-depth implementation plan
  • Focusing on Critical items first, as well as "low hanging fruit" of lower priority
  • Provide technical support on implementation
  • Provide re-testing of cleared items
  • Provide DoD-required documentation (as well as evidentiary materials) to prove items are fixed
  • Provide technical input to your DIACAP certification assessors for any contested items

Let InfoSec and our highly skilled mainframe security consultants assist you in meeting your DoD DIACAP requirements so that you are not faced with audit finding from the formal DoD audit process which could jeopardize your DIACAP certification.

Contact Us
Submit Information

TSSadmin Express™

Customers have proven that TSSadmin Express™ significantly increases their current work capacity by simplifying tasks, correlating data and improving productivity. You too can experience the increase in depth, quality and quantity of your mainframe CA Top Secret security administration.

Learn More

PSU Program Offerings

Flexible, expert support when you need it.

Learn More

Stay Connected

Facebook Twitter