AED provides objective, independent, knowledgeable, rigorous, and in-depth review and analysis of IT security policy and system documentation, IT security program management issues, as well as IT Certification and Accreditation for sensitive‐but‐unclassified and classified national security systems.
This support consists of assistance with the review and evaluation of operating unit IT security program management and planning practices or compliance with government security program policies, including Certification and Accreditation package documentation (IT security plans, risk assessments, continuity of operations plans, security control tests, and other related IT security documents).
Our team of Information Assurance professionals will conduct a thorough Security Compliance Assessment Survey.
Our team of Information Security Specialists have the experience, clearances, certifications and credentials to meet your diverse Information needs.
Our team of IT professionals will conduct thorough Security Compliance Assessment Surveys to ensure you meet Federal Information Security Management Act (FISMA) Compliance and/or other compliance requirements.
Our Program and Project Managers are IT professionals, focused on tailored, cost‐effective solutions for your needs.
- Security Test & Evaluation (ST&E)
AED’s approach to ST&E helps the customer in examination and analysis of technical and nontechnical security safeguards of IT resources applied in an operational environment. AED will develop a ST&E Plan, execute the ST&E Plan, and develop the ST&E Report to assist the customer in making the accreditation decision for Departmental GSSs and MAs.
- Independent Verification & Validation (IV&V)
AED’s approach to IV&V helps the customer gain the most return on investment (ROI) possible on software development programs. We conduct IV&V primarily as an independent contract to provide an unbiased review of processes and products within the organization.
- Certification and Accreditation (C&A)
AED’s approach to C&A helps the customer with Certification in the technical evaluation of security components and there compliance for the purpose of Accreditation and formal acceptance of the adequacy of the system’s overall security.
- SPECIALIZED SERVICES
- Vulnerability Testing
- Continuity of Operation Planning (CONOPS)
- Web Security
- Information System Security Managers (ISSM)
- Information System Security Officers (ISSO)
- Well versed in DCID 6/3 as well as DIACAP, DITSCAP, FISMA, NIST and FIPS compliance.