Task #205
closedDeliverable #240: SSP artifacts
Provide artifacts for ORE accreditation, in accordance with DoD and Federal requirements, including RMF.
100%
Description
3.3.31 Provide artifacts for ORE accreditation, in accordance with DoD and Federal requirements, including RMF.
Files
Updated by Doug Fraser over 2 years ago
Success Criteria:
provide application, platform and environment scan data for RMF
provide ATO documentation for RMF (FIPS 199, user and installation guide, configuration and change mgmt plan, PIA, incident response plan, ISCP, rules of behavior, InfoSec Policy, Digital Identity Plan)
Updated by Jacob Halle about 2 years ago
- Due date changed from 02/28/2023 to 05/28/2023
Obtained from the government templates required to take ORE through cybersecurity review and other Navy specific processes tailored against RMF 800-53.
Updated by Jacob Halle almost 2 years ago
Policy documentation is being built, 2 Twelve still waiting on government to give control information to add to SSP. 2 Twelve completed security documentation based on controls we are responsible for. 2 Twelve is responsible for approximately 100 controls, but still waiting on the government to provide approximately 180 controls.
Updated by Jacob Halle almost 2 years ago
- File ORE accreditation Email correspondence 20230228.pdf ORE accreditation Email correspondence 20230228.pdf added
- File NDP ORE PPSM 20230222.xlsx NDP ORE PPSM 20230222.xlsx added
- File uInfMgmt_e6211_Diagrams_ORE_20230222.vsdx uInfMgmt_e6211_Diagrams_ORE_20230222.vsdx added
Information for accreditation provided to Mr. Trajan Crocker for CSR. See attached documentation for email correspondence, PPSM, and Visio diagram.
Updated by Jacob Halle almost 2 years ago
- Due date changed from 05/28/2023 to 08/02/2023
Updated by Oscar Robertson over 1 year ago
Jacob Halle wrote in #note-5:
Policy documentation is being built, 2 Twelve still waiting on government to give control information to add to SSP. 2 Twelve completed security documentation based on controls we are responsible for. 2 Twelve is responsible for approximately 100 controls, but still waiting on the government to provide approximately 180 controls.
Who are you waiting on from the government to provide these remaining controls?
Updated by Jacob Halle over 1 year ago
We have provided documentation to Trajan for these controls. Any documentation on Navy RMF processes will be helpful. We understand its tailored around NIST 800-53 industry standard controls, but the non-technical processes will be helpful also. Thanh will reach back out to Trajan to request.
Updated by Oscar Robertson over 1 year ago
Can the government get an update on this task?
Updated by Jacob Halle over 1 year ago
- Status changed from In Progress to Closed
- % Done changed from 80 to 100