Black Rock ensures appropriate safeguards are in place to protect networks and network-supported assets.
Our Security Engineers and Analysts are unique in that they have provided Certification and Accreditation Services to both General Computing Environments with Global Information Grid connected systems as well as Weapons, Launch Range Instrumentation, and Health Care Systems. We know the nuances associated with those systems and will develop and implement Systems Security Strategies and plans that identify, mitigate, monitor, report, and fix vulnerabilities of target systems. Our execution of Information Assurance includes assigning measurable implementation/maintenance costs of countermeasures, for acquisition planning and prioritization of requirements within the customer’s procurement strategy.
BR personnel are experts in major federal security laws, Executive Orders, security implementation guidelines, and their applicability to government and private organizations. Security-related statutory requirements include privacy aspects of the Health Insurance Portability and Accountability Act (HIPAA) and the Federal Information Security Management Act (FISMA) DoD Information Assurance Certification and Accreditation Process (DIACAP) and the Risk Management Framework (RMF). BR can assist federal, state, and private organizations with the security accreditation process (C&A) mandated for many federal and outsourced information systems.