Welcome Login

You are here

Business Support Systems (BSS) Security Assessment and Authorization Status Report - December 2018

This report indicates the progress of each EIS contractor’s BSS FISMA Security Assessment & Authorization (A&A). EIS requires a “moderate” authorization as defined in FIPS 199, NIST SP 800-60 and GSA Policies and Procedures. The Process begins with the contractor’s completion of all required documentation, along with security vulnerability and system compliance scans. Upon GSA’s acceptance of the documentation and security scans, GSA’s Security Assessment Team conducts a Security A&A Initiation meeting with the contractor. The Initiation meeting officially starts the Security A&A process in accordance with the EIS contract. It is followed by review and acceptance of the Security Assessment and Authorization package by GSA, and issuance of the Authority to Operate (ATO) by GSA’s Authorizing Official (AO).

Each EIS contractor must receive an ATO before its system can be put into operation.

Upload
Files: 
Attachment TitleSizeType
PDF icon Security_A_&_A_Status_External_Report_12042018.pdf199.68 KBPDF
 
 
Tags: 
Share

Views: 184

The Enterprise Infrastructure Solutions (EIS) contract will be the main component of the future telecommunications portfolio that GSA is defining... More

To stay informed on the group's latest updates, subscribe here.

  • Issadmin2
  • JayDeez
  • wendy.hoggard