Our security as a service (SAAS) approach to Security and Risk Management applies to all elements of safeguarding and protecting your information and assets – ensuring availability, integrity, authentication, confidentiality / privacy, and non-repudiation. In addition, TSTC provides Critical Infrastructure and Key Resources (CIKR) protection through duty desk, watch desk, and security operation support services.
TSTC monitors events ranging from natural disasters to possible terrorist incidents. We provide timely and effective responses to both natural disasters and threats caused by human elements and provide coordination with state and local groups throughout the nation. TSTC is currently engaged in US Government and private sector cyber threat information sharing programs and provides direct support to the President’s National Security Telecommunications Advisory Committee (NSTAC).
TSTC staff have extensive full life-cycle security and risk management experience within the Federal Government. In addition to ongoing security operations support, our certified ISSOs verify compliance with established security procedures and standards, identify and document vulnerabilities and non-compliances, provide incident response and support forensics, and proactively manage risk in compliance with Agency/Department regulations, Executive Orders, Public Law, and NIST, OMB, and other guidelines.
In support of Ongoing Authorizations and the NIST Risk Management Framework (RMF), we assemble and maintain security authorization (SA) / certification and accreditation (C&A) packages, PIAs, and SORNs; develop security architectures and solutions using sound security systems engineering practices (defense in depth and enclaves); perform security and contingency tests and evaluations; and assisting you in attaining your near term and long term protection goals.