Cybersecurity
DISA announces new tools to manage system risk
The Defense Information Systems Agency on Jan. 23 announced the availability of service product packages to help mission partners ensure their programs and systems are compliant with the DISA Computing Ecosystem.
Each of the packages contains control correlation identifiers that have been validated and assessed as inherited or shared between DISA and mission partners. CCIs allow for “high-level policy” framework requirements to be “decomposed” and associated with low-level security settings to determine compliance with objectives of specific security controls.
The packages aim to give mission partners a holistic view of their information systems risk posture.
“We are also saving mission partners time and resources by leveraging our tested, validated, and compliant CCIs,” Stephanie Watt, chief of the DISA’s Cyber Controls Section in the cyber services line of business, said in the announcement.
DISA provides additional service product packages to help mission partners operate within the risk management…
