If you are currently working with the public sector, chances are that you must meet the obligations of a Federal Information Security Management Act (FISMA) certification. Our advisory services, workshops, gap assessments, and engineering efforts ensure a full compliance solution for your FISMA systems.
Perform workshops on FISMA processes – educating key stakeholders, technical personnel, and support teams on a variety of topics. Workshops are interactive and are used to learn more about your business
Deliverables
Delivery of a variety of workshops covering FISMA processes/authorization paths including topics of security continuous monitoring and response planning
Regular remote meetings to track progress that best fits your schedule
Personnel
Security Consultant(s) will be assigned to the engagement for a flat fee
Customer Responsibilities
Provide access to related documentation and in-scope systems
Guidance in assessing your existing services and its control implementations, infrastructure, detection and response policies, recovery procedures, and relevant documentation adherent to FISMA
Guidance through FISMA – educating key stakeholders, technical personnel, and support teams on a variety of topics.
Guidance on which key functions to prioritize in accordance with gaps in the organization.
Deliverables
Regular meetings regarding FISMA processes including topics of key functions
Regular meetings to provide recommendations with third party companies
Personnel
Security Consultant(s), billed hourly as needed for the engagement
Customer Responsibilities
Provide access to related documentation and in-scope systems
Assessment of your existing services and its control implementations, infrastructure, detection and response policies, recovery procedures, and relevant documentation in order to perform a gap analysis for FISMA
Creation of a report with a detailed roadmap of efforts in regards to people, processes, and technology with recommendations for all unmet requirements
Deliverables
Detailed readiness assessment includes review of your environment, information security policies, procedures, personnel, and controls
Remediation plan with detailed steps to resolve gaps within a feasible timeline and regular meetings to track progress
Personnel
Security Consultant(s) will be assigned to the engagement for a flat fee
Security Consultant(s), billed 5 days full-days per week for the engagement
Expected full FISMA gap assessment to be 4-6 weeks depending on organization size and infrastructure
Customer Responsibilities
Provide access to related documentation and in-scope systems
Assessment of your existing services and its control implementations, infrastructure, detection and response policies, recovery procedures, and relevant documentation in order to perform a gap analysis
Perform workshops on FISMA – educating key stakeholders, technical personnel, and support teams on a variety of topics. Workshops are interactive and are used to learn more about your business
Creation of a report with a detailed roadmap of efforts in regard to people, processes, and technology with recommendations for all unmet requirements
Deliverables
Detailed readiness assessment includes review of your environment, information security policies, procedures, personnel, and controls
Delivery of a variety of workshops covering FISMA including topics of security continuous monitoring and response planning
Remediation plan with detailed steps to resolve gaps within a feasible timeline and regular meetings to track progress
Personnel
Security Consultant(s), billed 5 days full-days per week for the engagement
One or more HanaByte Security Consultants may travel to your organization’s site to conduct hands-on assessment and workshops
Gap assessment and workshops may be conducted concurrently for a reduced turnaround time in the case of assignment of multiple HanaByte Security Consultants
Customer Responsibilities
Provide access to related documentation and in-scope systems
