NuCrest provides cyber defense for the federal government, ensuring governing federal cybersecurity standards, policies, and security guidelines are properly implemented in applications/systems to comply with the respective security controls/requirements for each diverse federal enterprise. Assess security risk and conduct security strategic analysis to provide security solutions in compliance with the enterprise business functions and networks.

 

NuCrest has experience with seamlessly integrating into a program office or software development/systems integration project the comprehensive set of federal information security regulatory guidelines (FISMA, NIST, CNSS, DoD, DoDIIS, DHS, Common Criteria, etc.), security controls/requirements, industry standards (ISO27001:2005 and 27002:2005), best practices and processes with other federal guidelines (OMB, SOX, etc.) and information sharing initiatives (Executive Order 12958/13356).

 

Expertise:

 

• Cyber Risk and Strategic Analysis

• Information Assurance & Security

• Enterprise Security Architecture

• Security Development Lifecycle

• Security Engineering

• Audit and Logging (Policy and Management)

• Computer Network Defense (CND)

• Risk Management Framework (RMF)

• Vulnerability Detection and Assessment

• Cross Domain

• Threat Modeling

• Assessment and Authorization

• Continuous Monitoring

• Cloud Security Assessments

• XML Schema assessments and validation