about_us_sub_nav
About Us
History
Capabilities
Vision and Mission
Message from the CEO/Founder
Industry Awards/Rankings
Corporate Affiliations
People Profile
Past Performance
Clients
Press Releases
News and Events
Corporate Newsletter (PDF)
disa_iassure_content

Defense Information Systems Agency

Information Assurance Support Services

SCOPE: Pragmatics evaluated security policies and assessed products and services to secure ePortals for the National Communications Service (NCS). Pragmatics built a compendium of Distributed Denial of Service (DDOS) attack and defense tools and countermeasures, and built an integrated DDOS contingency plan for more than 20 networks and systems for DISA’s Network Services. Finally, Pragmatics is conducting a certification and accreditation (C&A) security assessment of Washington Headquarters Service (WHS) and the Offices of the Secretary of Defense (OSD). In support of the Designated Approval Authority (DAA), we produce System Security Authorization Agreements (SSAAs) in compliance with the DOD Information Technology Security Certification and Accreditation Process (DITSCAP).

RESULTS: Pragmatics is skilled at adapting COTS packages to security needs. We have used the iManage tool to support the content management, archiving, version control, and collaboration between geographically separated stakeholders. Pragmatics is a skilled integrator of the iManage tool and has developed a solution to support the WHS and the OSD in managing their SSAA certification and accreditation documentation challenges. This implementation includes:

  • Archiving baseline documentation
  • Tracking system upgrades (as reflected in the system documentation)
  • Monitoring ATO/IATO status
  • Sending alerts to stakeholders of document changes

Pragmatics also uses the Buddy System® Risk Analysis Tool if the certification level requires a detailed risk assessment. The Buddy System® can be customized and risk assessment surveys made available through a common web-browser. An evaluation of threats and recommended countermeasures can be displayed for the SSAA stakeholders to make informed risk management decisions.

TECHNOLOGY: This support includes analysis, integration, and implementation of security features for network components that includes Routers, ATM switches, Firewalls, Intrusion detection systems, and other network devices. Our engineers use Security Technical Implementation Guides (STIG) guidance to improve the posture of Windows 2000 workstations, UNIX (HP and Solaris), and network components (Cisco routers, Firewalls, etc). Our security integration team consists of Certified Information Systems Security Professionals (CISSPs), Microsoft Certified System Engineers (MCSEs), and Cisco Certified Network Associates (CCNAs).

Back to Past Performance
Copyright 1996-2008 Pragmatics, Inc. All Rights Reserved | webmaster@pragmatics.com