Security Certification

...for confidence in IT security procedures

Fulcrum has strong experience in certification and accreditation (C&A) of systems in accordance to industry standards such as NIACAP and DITSCAP standards. Fulcrum staff are knowledgeable and proficient in IT security certification, specifically with the Federal Security Regulations in OMB A-130 Appendix III, NIST 800-37 Security Guidelines, and FIPS Security Publications for performing certification and accreditation (C&A) activities.

Following are specific examples of certification tasks we have completed for our customers:

• Performed risk and vulnerability assessments based on National, IC, DoD, and Program regulations/directives.
• Developed security certification and accreditation dry-run tests.
• Implemented performance test and system penetration tests.
• Provided on-site technical support and advice to the customer on issues pertaining to the security configuration and implementation on information systems (IS) being fielded.
• Evaluated security certification and accreditation-related documentation for compliance with applicable directives.
• Conducted code reviews for compliance with applicable security directives and policies.
• Produced certification and accreditation dry-run test reports.