Government / US Department of Defense (DoD) / NATO

The U.S. DoD is continuously implementing new methods to ensure information security (INFOSEC). The Defense Information Systems Agency (DISA) releases Security Technical Implementation Guides (STIG) and Security Recommendations Guides (SRG) to assist with the protection and defense of the systems that support military readiness and operations. Command Cyber Readiness Inspections (CCRI) are performed to assess defensive posture as it relates to STIGs best practices. 

Automated Network Compliance for DISA STIGs (ANCDS) automates the tedious manual process of determining if your network devices are configured in accordance with the appropriate DISA STIGs. ANCDS uses interactive workflows to guide you through automating the remediation process which further reduces the level of effort to maintain your Risk Management Framework (RMF) security controls and posture.

We currently support 1,100+ automated individual checks per device which allows our Automated Network Compliance (ANC) service offering to thoroughly assess your network's security posture.

Platform Certifications

  • DoDIN APL

  • Army Certificate of Networthiness (CoN)

  • FIPS Compliant

Supported DISA SRGs & STIGs*

  • Firewall STIG v8 Release 25 for Cisco ASA

  • Firewall SRG v1 Revision 3 for Cisco ASA

  • Network WLAN STIG v6 Release 14 for Cisco WLC

  • Network Infrastructure Policy STIG v9 Release 7

  • Network L2 Switch STIG v8 Release 27 for Cisco IOS & IOS-XE

  • Network L2 Switch STIG v8 Release 27 for Cisco NX-OS

  • Network Infrastructure Router L3 Switch STIG v8 Release 29 for Cisco IOS & IOS-XE

  • Network Perimeter Router L3 Switch STIG v8 Release 32 for Cisco IOS & IOS-XE

  • Planned: Network Infrastructure Router L3 Switch STIG for Cisco NX-OS

  • Planned: Support for additional hardware vendors

* Audit names are based on DISA’s naming convention