Home > Services > Information Assurance and Cyber Security > Information Security Program Management
Information Security Program Management
Development, implementation, administration, and maintenance of major Information Security governance and compliance frameworks (NIST - Risk Management Framework, COBIT, COSO).
Establishment and maintenance of organized, current, and accessible information security data repositories for NIST - Risk Management Framework (RMF):
> Organizational information security policy & procedures documents
> Regulatory compliance documents
> FISMA/FedRAMP Assessment and Authorization packages
> System Security plans
> Security & Privacy assessments
> IT Business Continuity & Disaster recovery plans
> Incident Response plans, Awareness & Training
> Access and Authorization forms
> Change management documentation
> Risk evaluation and mitigation documentation