Welcome Login

For current information from GSA about COVID19 please click HERE

You are here

Business Support Systems (BSS) Security Assessment and Authorization Status Report as of October 9, 2019

This report indicates the progress of each EIS contractor’s BSS FISMA Security Assessment & Authorization (A&A).  EIS requires a “moderate” authorization as defined in FIPS 199, NIST SP 800-60 and GSA Policies and Procedures.  The Process begins with the contractor’s completion of all required documentation, along with security vulnerability and system compliance scans. Upon GSA’s acceptance of the documentation and security scans, GSA’s Security Assessment Team conducts a Security A&A Initiation meeting with the contractor. The Initiation meeting officially starts the Security A&A process in accordance with the EIS contract. It is followed by review and acceptance of the Security Assessment and Authorization package by GSA, and issuance of the Authority to Operate (ATO) by GSA’s Authorizing Official (AO).


Each EIS contractor must receive an ATO before its system can be put into operation.

Attachment TitleSizeType
File Security_A_&_A_Status_External_Report_10092019 (1).docx139.55 KBDOCX
Key Tags: 

Views: 1758

The Enterprise Infrastructure Solutions (EIS) contract will be the main component of the future telecommunications portfolio that GSA is defining... More

To stay informed on the group's latest updates, subscribe here.

  • donfanning's picture
  • rsarra's picture
  • garydubose's picture