Noteworthy

Anita Reppert, CISSP

Draws upon over twenty years of information assurance experience to provide critical government agencies with guidance on the design, implementation and operations of comprehensive security architectures.

Abdul Ougnou

Responsible for the evaluation, documentation and compliance of DISA Security Technical Implementation Guidelines (STIG) for a major healthcare program

Information Security & Assurance

Solutions for Both Sides of the Line

Government agencies – particularly, the Intel sector – must balance their need to secure information with demands to share it. What’s more, they need to be prepared to play both defense and offense as increasingly sophisticated cyber attacks are commonplace today. And a host of often changing requirements and regulations must be met and verified on a 24/7/365 basis.

Agilex recognizes this reality and has brought together a highly-trained team of cleared and accredited professionals to address these requirements. They have spent the bulk of their careers working within the Intelligence Community, developing trusted solutions and offering dynamic mission support around all aspects of Information Security & Assurance. We are certified and trained in the most critical security standards, including:

• Federal Information Processing Standards
• S-CAP
• DCID 6/3
• DIACAP
• FISMA
• HIPAA
• 800-53

We also invest continually and aggressively in our solutions to stay ahead of the threat. For example, we recently partnered with HBGary to bring to government their innovative technology for detecting, diagnosing and responding to real-time malware attacks.

Addressing the Full Information Security & Assurance Lifecycle

Our proven solutions for Information Security & Assurance address the following mission requirements:

• Network Security and Forensics — Network integrity encompasses more than just border control and outside-in access. Instead, threats and vulnerabilities must be measured and assessed throughout the organization’s network architecture. Our security analysts and engineers execute a point-by-point review of your network infrastructure, safeguarding both your assets and your critical IT systems without diminishing needed access. With network forensics, we dig even deeper in the wire to analyze and prevent false and malfeasant traffic from breaching your security parameters.
• Vulnerability Assessment and Penetration Testing — Target systems are fully analyzed and documented as part of a comprehensive vulnerability assessment. In our evaluation, we test for system patch compliance and other chinks in the armor of application security and patch management. Based on our belief that vigilance is never-ending, we then perform automated penetration testing across a number of scenarios to ensure that nothing has been overlooked. Services are delivered in either a black box scenario or in full view of your scope.
• Intrusion Prevention and Detection — Agilex engineers have spent years honing their skills on complete and proper usage and placement of IP/ID systems. We utilize both the capabilities embedded in your existing systems as well as third-party applications to strengthen both the security and robustness of your infrastructure.
• Certification and Accreditation (C&A) — Diligent planning and specialized resources are needed throughout the application lifecycle to comply with the myriad of government regulations and guidance in place for maintaining a secure and robust IT infrastructure. With deep knowledge of the requirements mandated by the revised Federal Information Processing Standard, we help government agencies architect and document key systems to fulfill detailed requirements for each phase of the C & A process. Our experts are equally knowledgeable of a number of other standards, such as the Security Content Automation Protocols (S-CAP), and work closely with clients to facilitate adoption of these new practices.

Driving Continuous Adoption of Best Practices

We also recognize the importance of change management and continuous compliance. As such, we work collaboratively to train users on new procedures and required processes and provide business process outsourcing services to support your long-term implementation.

While our skills have been honed in the highly-demanding Intelligence Community, we support Information Security & Assurance requirements throughout government and within commercial enterprises. As just one example, we offer deep expertise in the use and protection of individually-identifiable health information.