The Department of Homeland Security (DHS), US Coast Guard (USCG), Command Control Communications Cyber and Intelligence Service Center (C5ISC) Information Assurance (IA) Branch has a requirement for Risk Management Framework (RMF) Services.

The Command Control Communications Cyber and Intelligence Service Center (C5ISC) Information Assurance (IA) Branch provides comprehensive IA services prescribed by the Risk Management Framework (RMF) for over 150 enterprise information technology (IT) systems and platform IT systems, to include those aboard USCG Cutters. These services are essential to ensuring the confidentiality, integrity, and availability of our IT systems. Services include all aspects of the Risk Management Framework to include the roles of Information Systems Security Officer (ISSO), Information Systems Security Engineer (ISSE), Security Control Assessor (SCA), and related Compliance and Reporting services.

• The following key service areas require support:
  • Conducting Assessment and Authorization (A&A) for IS/PIT/PITS
  • Maintaining Authorization to Operate through Ongoing Authorization
  • Provide Security Engineering Solutions for efforts that include, but not limited to, commercial and private cloud, DevSecOps, and control testing automation.
  • Support development efforts through and utilized DevSecOps / Agile practices. These services are required to meet the USCG mission objectives:
    • Defend cyberspace, ensuring Coast Guard IT systems and networks are secure and resilient for mission success
    • Enable operations while maintaining an acceptable risk posture through hardening of services and devices.
    • Maintain security objectives as part of Request for Modifications (RMF) process as systems perform upgrades and deploy new capabilities.