IMSG provides the full range of services necessary to perform complete Certification and Accreditation (C&A) of major applications and general support systems. We have experience in DITSCAP, DIACAP and NIACAP compliance, and our methods are consistent with current NIST guidance. While our tool-enabled process substantially reduces the paperwork burden, our approach enables government agencies to see beyond the paper drill. C&A documentation can be voluminous. Our methods ensure that key issues, residual risks, and prioritized criteria are clearly articulated in Executive Summaries so that system owners and security managers can focus on the key issues.

As Federal security policy and reporting requirements continue to change, our tool-enabled process allows agencies to respond to changes by making sure that their compliance documents are easily updated and always current. Our methods also enable managers to take a holistic approach, and connect specific information in the C&A Package with the Exhibit 300 and other Capital Planning and Investment Control (CPIC) reporting requirements.

Contact IMSG for a presentation of our C&A tools and services.

Point of Contact:   Bob Fritschie, fritschier@imsg.com, (937) 427-9010