“ISHPI excelled at providing support to both our government team and our customers according to conditions specified in the contract. Over the course of answering queries on COMPUSEC (1,089), C&A (228), COMSEC (1,922), and EMSEC (2,252), the ISHPI team provided ‘on-the-spot’ guidance to customers accurately and with specific supporting references to ensure consistency with DoD and Air Force policy. Additionally, they provided expertise on DoD’s Ports, Protocols, and Services (PPS) management program, successfully fielding 1,072 queries that surpassed government expectations for the standards of support on this program.” –DISA/DITOCO COR, November 2013
ISHPI has provided Information Assurance (IA) services to numerous U.S. Government agencies including the U.S. Coast Guard (USCG), U.S. Marine Corps (USMC), Air Force Network Integration Center (AFNIC), Air Force Space Command, National Geospatial-Intelligence Agency (NGA), U.S. Army Test and Evaluation Command, and 20th Medical Group (MDG) at Shaw AFB, SC.
ISHPI’s highly credentialed and certified personnel furnish a wide range of IA and Certification and Accreditation (C&A) subject matter expertise to multiple USCG commands and sites for USCG information systems on the Non-Classified Internet Protocol Router Network (NIPRNET), Secret Internet Protocol Router Network (SIPRNET), and the Joint Worldwide Intelligence Communications System (JWICS). We have conducted IA and C&A evaluations and assessments; identified, quantified, prioritized, and ranked vulnerabilities; coordinated and maintained DHS and DoD vulnerability database accounts; served as subject matter experts (SMEs) for the USCG C&A process; provided IA training to USCG personnel; developed C&A documentation, Information Systems Security Plans (ISSPs), and Information System risk documentation; and produced and audited IA artifacts that adhere to USCG, DoD, and NIST standards and requirements. We have developed hundreds of C&A packages to obtain the required Authority To Operate (ATO) and Authority To Connect (ATC) for USCG systems and networks.
Our personnel include CISSP-certified Information Systems Security Officers (ISSOs) who work for the USCG’s Command, Control, and Communications Engineering Center (C3CEN)’s C&A branch located at every District Office within the USCG. For the Coast Guard’s WAN and TISCOM LAN, which comprise two networks, 17 enterprise systems, 700+ workstations, and over 1,000 servers for enterprise systems, ISHPI’s personnel developed 43 process guides to assist engineers and systems administrators in the secure configuration of systems and proper handling of U.S. Government information.
ISHPI also furnishes IA support to the U.S. Air Force. For the Air Force Space Command (AFSPC) Air Force Network Integration Center (AFNIC) and the Cyberspace Support Squadron (CYSS), ISHPI provides IA support to all AF MAJCOMs and field-level Wing organizations for Communications Security (COMSEC), Computer Security (COMPUSEC), and Emissions Security (EMSEC)/TEMPEST policy. ISHPI has helped draft numerous IA-related AF publications including AFMAN 33-282, COMPUSEC; AFMAN 33-283, COMSEC Operations; AFI 3-200, Information Assurance (IA) Management; AFMAN 33-286, TEMPEST Operations; Methods and Procedures Technical Order (MPTO) 00-33A-5004, Access Controls for Information Systems; MPTO 00-33A-5006, End Point Security for Information Systems; MPTO 00-33A-5007, Security Incident Management; and MPTO 00-33A-5008, Remanence Security for Information Systems.