Network/System Certification and Accreditation (C&A)
Abstract
This activity maintains the Assessment and Authorization (A&A) and Certification and Accreditation (C&A) data repository, capturing the RMF documentation (artifacts, validation results, and Information Assurance Risk Assessment results, and Designated Approving Authority (DAA) accreditation decisions) and plans of action and milestones (POA&Ms) on all MDA information systems. This activity prepares and submits C&A documentation and accreditation recommendations to the MDA Chief Information Officer (CIO) /Certification Authority and the DAA. Independent Verification and Validation team actions ensure the availability, integrity, authentication, confidentiality, and non-repudiation of the MDA mission, test, and administrative systems. Recurring accomplishments include the following: - Monitor and track cybersecurity and mitigations detailed in Information Technology security POA&Ms. - Conduct cybersecurity design, engineering, and architecture planning for C2BMC information technology systems - Plan and test the cybersecurity controls for C2BMC systems - Conduct Security Controls Assessment (SCA) testing continuous monitoring of C2BMC mission systems and provide POA&Ms to mitigate cybersecurity vulnerabilities. Specific and/or unique accomplishments for each FY are as follows:
Document Details
- Document Type
- Accomplishment
- Publication Date
- Oct 01, 2018
- Source ID
- d8c57f7eb3b52294496d1041dc5b52eb