CANDA team members led efforts to achieve Certification and Accreditation (C & A) for five (5) separate systems for the United States Coast Guard, as a part of the DHS. We worked extensively with the Risk Management System (RMS) and Trusted Agent FISMA (TAF) tools to rapidly provide C & A results in accordance with the DHS/NIST standards. In order to receive an Authorization Letter to Operate, our team successfully completed the following documents:
- Security Plan
- FIPS 199 Security Categorization
- Privacy Impact Assessment
- E-Authentication Assessment
- NIST 800-26 Annual Self Assessment
- Risk Assessment
- IT System Contingency Plan
- Security Assessment (ST&E) Plan
- Security Assessment Report
- Plan of Action & Milestones
- Accreditation Decision Letter