Security is a risk analysis and management activity,
therefore, keeping up with FISMA regulations is vital to
ensuring system confidentiality, integrity, and
availability. This starts with a successful system
authorization to operate and proper alignment to the
risk management framework (RMF). Castalia utilizes prior
system IA experience; existing documentation templates;
and support resources and artifacts gained from previous
contracts to assist customers with updating cyber
security policies, tracking tools, user and operator
training and process guides. To ensure compliance with
all applicable laws, directives, policies, and directed
actions, we employ guidance and direction from the NIST
SP 800-37 RMF, NIST 800.53, NIST 800.171, ICD 503, to
implement a unified approach to defending the customer
systems across multiple network domains.