Cyber Security & Information Assurance

We provide a full suite of Information Assurance services, and take pride in providing comprehensive solutions for our customers. Our innovative Cyber Security (CS) services include technological advances and cutting edge security solutions such as Identity and Privilege Management, Network Operations (NetOps), Security Engineering, and Situational Awareness with federated capabilities. Our extensive experience across the Information Assurance spectrum gives VPSI a unique capability to implement effective cyber security strategies and solutions. VPSI has extensive experience protecting information and the systems it resides on against unauthorized access across the five core competencies of Information Assurance. Our demonstrated capabilities include the following:

Authentication– Guaranteeing that information and its supporting systems are accessed only by persons with the appropriate level of authorization.
Availability- Information availability and the supporting technology and the professionals who maintain the infrastructure.
Confidentiality- Ensuring that only authorized persons have access to the information and its supporting technology.
Integrity- Trustworthiness of information and the supporting technology and their reliability.
Non-Repudiation- Ensuring the identity of the authorized person accessing the information and its supporting systems.
Risk Management Framework- Working knowledge with NIST 800-37 and FISMA to migrate Security Authorization services for continuing monitoring.

Our experience includes employing forensic and intrusion detection methods and programs to detect and protect a variety of enterprise systems and networks. Our capabilities played a key role in guiding the security architecture for the first certified wireless network afloat. Our CS competency along with our CS professional team, align to deliver the goals outlined by the DoD IA Strategic Plan:

1. Protect information
2.Defend systems and networks
3. Provide integrated IA/NetOps to include tools to conduct CS/Computer Network Defense Operations and Net-Centric Warfare
4. Transform and enable CS capabilities with emerging technologies and process improvement
5. Delivery of CS empowered workforce with the right skills, in the right place, at the right time

Our Exceptional Past Performance Includes The Following Examples

SPAWAR 2.0, Acquisition Contracts Directorate
Our engineering approach allowed us to process a “Type” accreditation through NETWARCOM. By attaining a Type accreditation, we reduced the NCMI E-DMZ environment accreditation timeframe, resulting in significant cost savings to SPAWAR. We led the Citrix Public Key Enabling (PKE) collaboration and development efforts to establish PKE enabling of the ACE-C. We also engineered Single-Sign-On (SSO) within the ACE-C E-Fileroom to increase security while simplifying user access.

SPAWAR 8.0, Command Information Officer
We developed POA&Ms and facilitated coordination meetings between the ACTR and the NMCI prime contractor to resolve service delays to successfully deploy over 350 CAC readers for BlackBerry users, enhancing user capabilities without compromising the security of sensitive information.

SPAWAR PEO Space Systems, PMW 146
VPSI was responsible for all C&A services performed in support of the MUOS Ground Stations located world-wide. We provided security engineering support to PEO Space Systems PMW 146 by performing engineering analyses in conjunction with DISA for site-to-site connectivity and DISN connection. VPSI has chaired System/Software Specification Reviews (SSR), Preliminary Design Reviews (PDR), Critical Design Reviews (CDR) and Test Readiness Reviews (TRR).

SPAWAR PMW 120 Systems Engineering
VPSI is one of the few companies world-wide to hold the title of a “Fully Qualified Corporation”. We provided PMW 120 Assistant Program Manager Engineer (APM (E)) Information Assurance Manager (IAM) support for PMW 120 Programs of Record Enclave Environment including: NITES, TEDS, VNE-NCS, METMF(R), METMF (NEXGEN), NITES IV, SWR, and ASOS. VPSI also served as a USMC Validator, processing DIACAP packages through the Marine Corps Certification and Accreditation Support Tool (MCCAST) on behalf of PEO C4I, PMW 120 supporting both the Legacy and METMFR(NEXGEN).

SPAWAR PMW 240, Sea Warrior Program
As a seasoned Navy Certification Authority (Navy CA) Corporate Certification Agent/Validator, VPSI serves as both the PEO EIS, PMW 240 Validator and liaison with the Navy CA for all matters involving accreditation and continuous authority to operate. The Sea Warrior Program (PMW 240) manages a complex portfolio of IT systems to support Navy human resource management, criminal justice, Fleet Support, afloat business applications, Navy and DoD portfolio management, DON administration, and joint aviation aircraft scheduling.

Serving as the Technical SME to the Sea Warrior Program for all matters pertaining to Software Assurance, Engineering, DIACAP and RMF processes, we provide both Navy and Marine Corps Validator Enterprise Services support.
The PMW 240 Program is part of the Navy PEO for Enterprise Information Systems (PEO-EIS), which develops, acquires, fields, and sustains enterprise network, business, and Fleet support IT systems for the warfighters of the Navy and Marine Corps.

SPAWAR PMW 160 C4I Systems Engineering
As the Certification Authority for PMW 160, VPSI established a program wide baseline of all systems and their characteristics which was used to maintain a proactive security posture, assessing potential, emerging and realized security risks and threats. The results of our efforts reduced the overall security risks to nearly zero vulnerabilities.

Department of Education, Security Authorization Services
VPSI supported the Department of Education Chief Information Officer with the execution of the Security Authorization (SA) (formerly Certification and Accreditation (C&A)) process to ensure the information systems are compliant with the Federal Information Security Management Act (FISMA), National Institute of Standards and Technology (NIST) standards and requirements. VPSI applied principles, in accordance with NIST SP800-37, to establish the overarching Risk Management Process, develop security authorization documentation, and to conduct security test and evaluation (ST&E) of the systems.

DISA PEO MA NetOps Division IA2, Security Engineering
VPSI provided all IA and security engineering expertise necessary to support the IA and security engineering activities across IA2 projects to ensure the appropriate use of IA technology and the development of related technical information in the design, development, testing, evaluation, deployment, operations, and maintenance of information systems for IA2 capabilities.

USCYBERCOM Operations Directorate (J3)
As a member of the J37 at Fort Meade, Maryland, we have provided 24/7 Information Assurance Vulnerability Alert (IAVA) compliance management assisting Combat Commanders/Services/Agencies (CC/S/A) including organizations such as the DIA, and the National Security Agency (NSA) with assessment of security threats and compliance with IAVA requirements across the GIG.

Would you like to learn more?

Input the Code You See: