Strategic Warfighter Integration Software Assurance Support
Abstract
Perform manual and automated software code analysis, using GFE tools (e.g. Fortify 360), to detect false positives, weaknesses, and vulnerabilities. 1) Verify and validate cybersecurity and/or cybersecurity-enabled products (firewalls, data/network encyptors, routers, Intrusion Detection Systems, etc.) used within the MDA infrastructure have a current and Evaluated Assurance Level (EAL) certification and rating. Validate IT products are listed on the DoD Approved Products List (APLITS). 2) Participate in meetings with customers to review software analysis findings and proposed courses of action for remediation. 3) Prepare a comprehensive report detailing the weaknesses and vulnerabilities found. Document the references to files and line numbers. 4) Maintain a record of all software code analysis documentation and organized in accordance with Government policy.
Document Details
- Document Type
- Accomplishment
- Publication Date
- Oct 01, 2018
- Source ID
- cc2b2194157802fe3c286d4a578520bb