Cybersecurity

SCCI provides enterprise-wide cybersecurity solutions for Department of Defense (DoD) systems, associated development infrastructure, and facilities in accordance with the following accreditation requirements:

  • DoD Instruction 8510.01, "Risk Management Framework (RMF) for DoD Information Technology (IT)," March 12, 2014
  • DoD Instruction 8500.01, "Cybersecurity," March 14, 2014
  • Committee on National Security Systems Instruction 1253, "Security Categorization and Control Selection for National Security Systems," March 15, 2012, as amended
  • National Institute of Standards and Technology Special Publication 800-37, "Guide for Applying the Risk Management Framework to Federal Information Systems"
  • National Institute of Standards and Technology Special Publication 800-39, "Managing Information Security Risk: Organization, Mission, and Information System View," current edition
  • National Institute of Standards and Technology Special Publication 800-53, "Security and Privacy Controls for Information Systems and Organizations", current edition
  • National Institute of Standards and Technology Special Publication 800-53A, "Guide for Assessing the Security Controls in Federal Information Systems," current edition
  • National Institute of Standards and Technology Special Publication 800-137, "Information Security Continuous Monitoring," current edition
  • DoD Directive 8570.01, "Information Assurance (IA) Training, Certification, and Workforce Management," August 15, 2004

Our Experience

Security specialist at computer.
Security specialist at computer.

We have provided cybersecurity support to:

  • Naval Surface Warfare Center Dahlgren (NSWC DD)
  • Combat Direction Systems Activity (CDSA)
  • Marine Corps Systems Command

Our Services

SCCI provides a comprehensive list of cybersecurity services, including:

  • Risk Management Framework (RMF)
    • Assessment and Authorization Processing (Afloat and Shore-Based)
    • System Categorization and Registration
    • Control Selection and Implementation
    • Security Assessment and Testing
    • Validation Services
    • Authorization Package Development
      • eMASS Registration and Management
      • Risk Assessment Report (RAR)
      • Security Assessment Report (SAR)
      • Plan of Actions and Milestones (POA&M)
    • Continuous Monitoring
      • Vulnerability Analysis and Management
        • Information Assurance Vulnerability Management (IAVM)
        • Vulnerability Remediation Asset Manager (VRAM)
      • Patch Management
  • Security Architecture Development
  • Cybersecurity Engineering
    • Research and Development
    • Configuration Management
    • Cross-Domain Solution Analysis
    • Security Risk Impact Assessment
  • FISMA Analysis and Reporting
  • Business Continuity and Disaster Recovery Planning
  • Incident Response and Recovery

Our Competitive Edge

SCCI was designated as an official Corporate Navy Certification Agent by the Navy Certification Authority, Space and Naval Warfare Systems Command (SPAWAR) in San Diego, Calif. This designation as a Fully Qualified Certification Agent is the highest standard available and recognizes both the credentials of our cybersecurity workforce (adherence to DoD 8570.01-M) and our corporate commitment to providing premier cybersecurity support services. Click here to view our certificate.

Go Back Services Overview