In response to the HSPD-12 mandate, NetSecurity works with Federal agencies in the planning, implementation, deployment, and auditing of their Personal Identity Verification (PIV) systems.

As part of our HSPD-12 offering, we help agencies to conduct the certification and accreditation (C&A) required of a PIV Card Issuer (PCI), following NIST 800-79 requirements. We develop documentation necessary for accreditation, such as: Operations Plan, Implementation Plan, Training Plan, Communication Plan, and other relevant artifacts. In addition, we perform the assessment of the PIV Card Issuing Facility to determine compliance with NIST standards.

OMB Circular A-130, Appendix III, requires that agencies conduct certification and accreditation (C&A) of information systems. C&A provides a form of quality control and challenges an agency to implement the most effective security controls possible in an information system. This process ensures that all aspects of security are addressed throughout the life cycle of the system. Armed with the most complete, accurate, and trustworthy information possible on the security status of a system, an agency official can make risk-based decisions on whether to authorize operation of a system within the agency.

NetSecurity's consultants are experienced in performing Certification and Accreditation (C&A) following NIST (800-37) and DIACAP metholodologies. We can manage and/or conduct a complete certification or prepare and assess individual documents in the final certification package that is ultimately presented to the accreditor for approval. Our service activities can include any of the following:

	Security Test & Evaluation (ST&E): Develop plans, test procedures, and execute tests Risk Assessment: Security Risk Assessment, E-Authentication, Privacy Impact Assessments, etc. System Security Plan (SSP): Review and develop SSPs Contingency Plans: Develop IT Contingency Plans, conduct testing exercises Ancillary Documents: Develop Change Management Plan, Incident Response Plan, POA&M, etc. Accreditation Package: Assemble certification and accreditation packages DIACAP: System Identification Profile, DIACAP Strategy, Implementation Plan, Security Control Requirements, Validation Procedures and Scorecard, POA&M

NetSecurity is a leader in information security consulting. We have successfully delivered security services and solutions to both private and public sectors. Our hands-on consultants are security experts with significant years of experience in protecting some of the nation's most critical and valuable information assets. Some of our typical hands-on security solutions, include:

	Security Assessments and Audits FISMA Compliance and Audits Security Policy Development Security Awareness Training Infrastructure Security Incident Response