Information Assurance is the process by which we protect and defend our information and information systems by ensuring the confidentiality, integrity, availability, accountability and restoration of data. OnPoint offers a full suite of Information Assurance and Information Security services, allowing us to partner with our customers in the development of a holistic IA Program. Our services include:
- Assessment Services
- Risk and Vulnerability Assessments; Penetration Testing
- Certification and Accreditation (C&A)
- Independent Validation and Verification (IV&V)
- Security Testing and Evaluation
- Strategic Services
- Policy and procedure design, creation, and review
- Disaster recovery and contingency planning
- Continuity of Operations Planning (COOP)
- Security Architecture Review
- Integration Services
- Patch Management solutions
- Firewall and Intrusion Detection Systems (IDS)
- Biometric Solutions
- System and application hardening
- Training and Awareness Services
- Computer-based training (CBT)
- Classroom training
- Detailed technical security training (admin level)
- Security awareness training (user community level)
In addition to the services listed, OnPoint's IA practice has a solid understanding and practical application of the federal laws, regulations and standards leading and governing the marketplace, including:
- Federal Information Security Management Act (FISMA)
- Sarbanes-Oxley Act
- Health Insurance Profitability and Accountability Act (HIPAA)
- NIST 800 Series Special Publications
- Federal Information Processing Standards Publications (FIPS)
- National Information Assurance Partnership (NIAP)
- Computer Security Act of 1987