Service

Information System Security Officer (ISSO) Assessment & Authorization (A&A) Support

Task type
Assess your risk level
Readiness Level
Foundational
Related topics:
Cybersecurity Best Practices, Organizations and Cyber Safety, Cyber Threats and Advisories

Description

The A&A Support service ensures National Institute of Standards and Technology (NIST) SP 800-53 security controls assigned are appropriate for a system. This service prepares system security documentation based on the Risk Management Framework (RMF) and NIST 800-37 to submit the A&A Authorization to Operate (ATO) and Interim Authority to Test (IATT) package for Chief Information Security Officer (CISO) approval.

Contact

This service is offered through our federal service partner, the Department of Health and Human Services (HHS). For more detailed information about this service, visit the HHS Enterprise Security Services (ESS) page. 

For inquiries about ESS offered services or if interested in purchasing services, please contact us at esslob@hhs.gov.

Tags

Audience
Federal Government
Topics
Cybersecurity Best Practices, Organizations and Cyber Safety, Cyber Threats and Advisories, Securing Networks
Programs
Cyber Marketplace

Related Services

Respond to an incident, Assess your risk level | Foundational, Intermediate

Metro State Cybersecurity Clinic

The Metro State Cybersecurity Clinic seeks to train students from diverse backgrounds—with varying academic expertise—to strengthen the digital defenses of under-resourced organizations in our communities.
Respond to an incident, Assess your risk level | Foundational, Intermediate

Louisiana State University - Cybersecurity Clinic

In conjunction with the Louisiana Small Business Development Center, the Louisiana State University Cybersecurity Clinic is helping to raise the cybersecurity baseline for small businesses by offering pro-bono cybersecurity services.
Intermediate

Semgrep

Semgrep OSS is an open-source, static analysis tool for searching code, finding bugs, and enforcing code standards at editor, commit, and CI time.