Government / US Department of Defense (DoD) / NATO
The U.S. DoD is continuously implementing new methods to ensure information security (INFOSEC). The Defense Information Systems Agency (DISA) releases Security Technical Implementation Guides (STIG) and Security Recommendations Guides (SRG) to assist with the protection and defense of the systems that support military readiness and operations. Cyber Command Readiness Inspections (CCRI) are performed to assess defensive posture as it relates to STIGs best practices.
Our service automates the tedious manual process of determining if your network devices are configured in accordance with the appropriate DISA STIGs.
We currently support 1,100+ automated individual checks per device which allows our Automated Network Compliance (ANC) service offering to thoroughly assess your network's security posture.
Army Certificate of Networthiness (CoN)
Supported DISA SRGs & STIGs*
Firewall STIG v8 Release 25 for Cisco ASA
Firewall SRG v1 Revision 2 for Cisco ASA
Network WLAN STIG v6 Release 14 for Cisco WLC
Network Infrastructure Policy STIG v9 Release 7
Network L2 Switch STIG v8 Release 26 for Cisco IOS & IOS-XE
Network L2 Switch STIG v8 Release 26 for Cisco NX-OS
Network Perimeter Router L3 Switch STIG v8 Release 31 for Cisco IOS & IOS-XE
Planned: Support for additional hardware vendors
* Audit names use DISA’s naming convention