Government / US Department of Defense (DoD) / NATO
The U.S. DoD is continuously implementing new methods to ensure information security (INFOSEC). The Defense Information Systems Agency (DISA) releases Security Technical Implementation Guides (STIG) and Security Recommendations Guides (SRG) to assist with the protection and defense of the systems that support military readiness and operations. Command Cyber Readiness Inspections (CCRI) are performed to assess defensive posture as it relates to STIGs best practices.
Automated Network Compliance for DISA STIGs (ANCDS) automates the tedious manual process of determining if your network devices are configured in accordance with the appropriate DISA STIGs. ANCDS uses interactive workflows to guide you through automating the remediation process which further reduces the level of effort to maintain your Risk Management Framework (RMF) security controls and posture.
We currently support 1,100+ automated individual checks per device which allows our Automated Network Compliance (ANC) service offering to thoroughly assess your network's security posture.
Army Certificate of Networthiness (CoN)
Supported DISA SRGs & STIGs*
Firewall STIG v8 Release 25 for Cisco ASA
Firewall SRG v1 Revision 3 for Cisco ASA
Network WLAN STIG v6 Release 14 for Cisco WLC
Network Infrastructure Policy STIG v9 Release 7
Network L2 Switch STIG v8 Release 27 for Cisco IOS & IOS-XE
Network L2 Switch STIG v8 Release 27 for Cisco NX-OS
Network Perimeter Router L3 Switch STIG v8 Release 32 for Cisco IOS & IOS-XE
Planned: Support for additional hardware vendors
* Audit names are based on DISA’s naming convention