Cybersecurity & Information Assurance
Ensuring the security and integrity of mission-critical systems.
DCCA helps government agencies adhere to federal cybersecurity standards.
With the majority of our personnel holding security clearances, DCCA provides security assessments and authorizations using the NIST Cybersecurity Framework, DIACAP and ICD 503 frameworks.
DCCA’s information assurance and cybersecurity support enables our customers to ensure confidentiality, integrity and availability of their data.
Our effective Information Assurance (IA) solutions provide government agencies with “peace of mind” regarding their data assets, whether those data are at rest or in motion. We deliver mechanisms to authenticate users, verify the integrity of the data, protect data, networks, and systems against cyber attacks and to prevent denial of service attacks. Our goal is to help ensure full and appropriate availability of the data to the government enterprise.
DCCA works in close partnership with our federal customers to ensure that our Information Assurance and Cybersecurity solutions are compatible with the government’s existing product suite. Importantly, we assist our customers to leverage the Defense in Depth best practice that balances people, technology, and operations. This practical layering strategy provides both the opportunity to more securely protect information and the ability to detect potential threats before they gain access to protected information.
As a veteran in the health IT community, DCCA is familiar with the regulations and dedicated to the protection of civilian and military confidential personal and health information. We not only comply with HIPAA Laws and Regulations, we also design, build, and test Government systems for compliance.
Select Cybersecurity & Information Assurance Past Performance
- DCCA provided support for the planning, development, and implementation of a comprehensive program to perform a Security Assessment for (24) healthcare agency systems located throughout the country.
- The security assessment process involved the review the application security artifacts, including the system security plan (SSP), risk assessment (RA), and contingency plan (CP), and other system support documentation, including requirements documents, design documents, and user guides, prior to the assessment. While on-site, the DCCA Evaluation Team performed technical testing to identify application vulnerabilities that may compromise the confidentiality, integrity, or availability of the system. DCCA provided on-going post-test support to clarify findings, make recommendations, review Corrective Action Plans (CAPs), and validate the corrective action as necessary.