Welcome Login

You are here

Business Support Systems (BSS) Security Assessment and Authorization Status Report as of May 8,2019

This report indicates the progress of each EIS contractor’s BSS FISMA Security Assessment & Authorization (A&A).  EIS requires a “moderate” authorization as defined in FIPS 199, NIST SP 800-60 and GSA Policies and Procedures.  The Process begins with the contractor’s completion of all required documentation, along with security vulnerability and system compliance scans. Upon GSA’s acceptance of the documentation and security scans, GSA’s Security Assessment Team conducts a Security A&A Initiation meeting with the contractor. The Initiation meeting officially starts the Security A&A process in accordance with the EIS contract. It is followed by review and acceptance of the Security Assessment and Authorization package by GSA, and issuance of the Authority to Operate (ATO) by GSA’s Authorizing Official (AO).

 

Each EIS contractor must receive an ATO before its system can be put into operation.

221
Upload
Files: 
Attachment TitleSizeType
PDF icon Security_A_&_A_Status_External_Report_05082019.pdf176.76 KBPDF
 
 
Share

Views: 1114

The Enterprise Infrastructure Solutions (EIS) contract will be the main component of the future telecommunications portfolio that GSA is defining... More

To stay informed on the group's latest updates, subscribe here.

  • zieglerb4rockies's picture
    zieglerb4rockies
  • TBerman77's picture
    TBerman77
  • lsippel's picture
    lsippel