Security

Safe. Compliant. Business.

FISMA Audit & Enterprise Risk Management

The dramatic expansion in computer interconnectivity and the rapid increase in the use of the Internet have changed the way our government, the nation, and much of the world communicate and conduct business. However, without proper safeguards, systems are unprotected from individuals and groups with malicious intent to intrude and use the access to obtain sensitive information, commit fraud, disrupt operations, or launch attacks against other computer systems and networks.

This concern is well-founded for a number of reasons, including the dramatic increase in reports of security incidents, the ease of obtaining and using hacking tools, the steady advance in the sophistication and effectiveness of attack technology, and the dire warnings of new and more destructive attacks to come. Information security is a critical consideration for any organization that depends on information systems and computer networks to carry out its mission or business. It is especially important for government agencies, where maintaining the public’s trust is essential.

The E-Government Act (Public Law 107-347) passed by the 107th Congress and signed into law by the President in December 2002 recognized the importance of information security to the economic and national security interests of the United States. Title III of the E-Government Act, entitled the Federal Information Security Management Act (FISMA) requires each Federal Agency to develop, document, and implement an agency-wide program to provide information security for the information and information systems that support the operations and assets of the agency, including those provided or managed by another agency, contractor, or other source.

Partner in Success

Information Technology Company, LLC (ITC) offers a best in class partnership in helping Federal Agencies with FISMA compliance. Built on ITC’s long relationship providing audit support with the Government Accountability Office (GAO) the company combines technology, proven methodologies, and experience to help its customers reduce risk and achieve maximum security. ITC recently performed successful FISMA audits of the General Support System of the National Transportation and Safety Board (NTSB)

Founded in 1993, ITC is an experienced service solutions provider that has the knowledge, tools, and proven methodology to help Federal Agencies achieve total security with their information technology environment.

ITC provides high-technology solutions and services to Federal Agencies and commercial customers that require high-quality in every aspect of a project, from planning to delivery and documentation. ITC provides services for project architecture design, application design, development of specialized hardware and software, hardware installation and support, systems programming, staff training, and data center auditing.

Active in the Federal sector since 1993, ITC is an IBM Business Partner specializing in IBM S/390, zSeries, and pSeries (RS/6000) computing platforms. Within those IBM hardware environments ITC provides superior expertise in z/OS, z/VM, z/VSE, Linux, and AIX operating systems. ITC also supports a variety of application environments including DB2, IMS, CICS, Oracle, MQSeries, MXG, SAS, CA-ACF2, CA-Top Secret, and CA-DYL. ITC is currently in the 5th year of an ongoing contract to provide FISMA auditing support to the Government Accountability Office (GAO).

ITC excels in providing information security testing and Enterprise Risk Management (ERM) services. The company brings experience and expertise in enabling Federal Agencies with relevant FISMA and Certification and Accreditation (C&A) services.

ITC aids Federal Agencies in their efforts to achieve total security with their systems by creating comprehensive periodic evaluation plans including network vulnerability and infrastructure penetration assessments. Our greatest strength lies with our team of industry certified and Department of Defense (DoD) security clearance personnel. Each one carries extensive C&A and Independent Verification and Validation (IV&V) experience and will work to assist each agency to achieve total security risk mitigation.

ITC engineering staff currently hold Department of Defense Top Secret clearances (TS-SSBI) and the ITC offices maintain a DoD Top Secret Facility Clearance, NATO Secret Clearance and COMSEC Secret Clearance.