VULNERABILITY ASSESSMENTS

ARE YOUR SYSTEMS VULNERABLE TO AN ATTACK?

DTC can conduct “full scope” system vulnerability assessments and provide a recommended plan of action to address corrective measures.

1.    Information Gathering and Vulnerability Scanning

Our technicians will establish a clear sight picture of your organizations current security posture and mission essential functions. We will use a combination of information gathering and vulnerability scanning (network based, host based, credentialed, and non-credentialed), interviews with system administration personnel to discuss processes, procedures, and finally disaster preparedness.

2.    Analysis and Risk Assessment

Our analysts will then assess the impact of discovered vulnerabilities as they relate to your environment. This allows us to produce a tailored mitigation strategy that accounts for the cost and complexity of implementation, burden to the workforce, and weigh that against the reduction in risk achieved by each mitigation.

3.    Recommend Plan of Action

In cases where material solutions and/or training are desired, we will work with you and your staff as trusted advisors helping you identify and down-select the best vendor or product to meet your needs.

How can DTC help with my Information Systems Security Engineering and Assurance?

DTC conducts “full scope” system vulnerability assessments through penetration testing, forensic investigation, and reverse engineering processes, which provide detailed insight into how secure your information system is.

The final analysis will be discussed with your team in a confidential and secure manner, and we will offer the best possible solution to suit your needs.

Vulnerability Assessments Information Security Engineering
CIA Security Triad - Information Assurance (IA)

What is Information Assurance (IA) and how does it affect my company?

Information Assurance (IA) is the practice of securing the Confidentiality, Integrity, and Availability (CIA) of information, and managing risks related to the use, processing, storage, and transmission of information or data and the systems and processes used for those purposes.

How can DTC help my company with IA?

DTC’s role with Information Assurance (IA) is to ensure your company understands the CIA triad, how it works, and to ensure that your information is properly monitored and adheres to accepted business protocols to keep your data safe.

IA applies to data and its various delivery methods including physical, and electronic. By identifying and understanding the risks, it is easier to develop a plan to ensure your company is able to better manage that risk.

Currently, DTC offers cradle-to-grave development of ATO packages with the NIST 800-171 (RMF) and JSIG (Rev 4) guides. DTC also can develop interconnection security agreements (ISA), authorization to connect (ATC), Interim approval to test (IATT), and other required documentation.

Our expertise enables our customers to continue their mission in seamless fashion, with the knowledge that we are certified experts in the field.