Contact
Mobile Version
Global Offices
Login
Online Help
| Software Solutions |  |
Events | |
Support |
| Mobile Solutions | |
e-Government Solutions | |
Logistics Solutions | |
Business Tools |
| |
Contact
Mobile Version
Global Offices
Login
Online Help
|
||||||||
|
|||||||||
|
|||||||||
|
|||||||||
| e-GOVERNMENT SOLUTIONS | GSA Schedule 70 IT Contract Number: GS35F0441S | |
|
||
PROJECTS
 Performance Management
 Business Scorecard
 Audit/Budget Tracking
 Strategic Planning
 Security
|
|
SOLUTIONS
Security Management Program Description The U.S. Federal Government has enacted strict security policies and procedures and Best Management Practices (BMPs) for mission-critical software applications. The key legislation mandating security standards are included in the FISMA (Federal Information Security Management Act) requirements. All eSpherical.com Federal Government software applications meet and exceed these and related standards. Our approach to software security begins with a comprehensive analysis of the following key security framework components: • User/Customer level security • Network/Resource security • Program and Application level security • Device level security • e-Authentication • Program and Department security policies and procedures At the completion of our analysis and evaluation of the above 6 key security framework areas, eSpherical.com provides a comperhensive report and Plan-of-Action to ensure our customer will meet and exceed the FISAM requirements. A primary component of our analysis and follow-up includes the completion of the required Certification and Accredidation (C&A) process to help our customers manage and reduce risks and system vulnerabilities. Our C&A process includes the following key items: • Network testing and scanning and intrusion detection • Operating system monitoring and testing • Data center physical security • Rigorous software vlunerability testing and scanning • e-Authenticaion testing • Disaster recovery • Contingency planning and continuity of operatings testing After a completion of the C&A process and reporting, systems are then certified by system owners and allowed to move into production. eSpherical.com schedules semi-annual C&A testing and planning and provides ongoing system support and security monitoring. To learn more about our Security Management web application and to see some sample screens, please click on the Software Features Link. |