DON Guidance - December 8, 2011
The Department of Defense Information Technology Portfolio Repository-Department of the Navy (DITPR-DON) process guidance document provides a comprehensive discussion of core DITPR-DON functionality and basic lifecycle transactions. This information will enable all users to gain the understanding necessary to perform the basic IT asset management functions of registering, transferring and archiving DON IT systems within ...
DTG 091446Z SEP 10 - September 10, 2010
This message announces the termination of the contract to obtain a Department of the Navy enterprise level commercial off-the-shelf Defense Information Assurance Certification and Accreditation Process tool.
DON CIO Guidance Document - May 5, 2010
The Department of the Navy Chief Information Officer has updated the security control mapping document originally published in November 2009. DON CIO has collaborated with Assistant Secretary of Defense (Networks & Information Integration) (ASD (NII)) to further refine the mapping of the Department of Defense's current security controls to the new consolidated security controls in NIST SP 800-53, revision 3. In addition ...
DON CIO Guidance Document - November 18, 2009
Recently, the National Institute for Standards and Technology (NIST) published Special Publication (SP) 800-53, revision 3, Recommended Security Controls for Federal Information Systems and Organizations, which provides a consolidated catalog of security controls. The Department of the Navy will continue using the DoDI 8500.2 as the authoritative source for security controls until otherwise specified. However, ...
DTG 091603Z NOV 09 - November 12, 2009
This Naval message provides Department of the Navy participation requirements in the DoD Information Assurance and Certification and Accreditation Technical Advisory Group meetings.
DTG 051610Z NOV 09 - November 6, 2009
This Naval message provides requirements for individual systems to achieve and maintain 100 percent compliance with the required certification and accreditation, annual security review, annual testing of security controls, and annual evaluation of contingency plans.
The message also highlights continuous compliance with Federal Information Security Management Act (FISMA) metrics and non-compliance consequences. In ...
DoD Memo - July 27, 2009
This memo provides a systematic, repeatable process for ensuring timely reciprocity of Department of Defense information systems and will advance information sharing, and reduce rework and cycle time when establishing Combined/Joint ISs/Networks.
DON CIO Memo - May 26, 2009
This memo provides guidance for the interactions among the Service Certifying Authorities (CAs), Service Designated Accrediting Authorities (DAAs), and the DON Senior Information Assurance Officer (SIAO). These interactions are based on the business rules stated in the Dec. 18, 2008, memorandum, Senior Information Assurance Officer Alignment and Responsibilities for Information Assurance and Certification and Accredi
DTG 081605Z JAN 09 - January 9, 2009
This Naval message provides Department of the Navy Federal Information Security Management Act goals for FY 09. This includes requiring that individual systems achieve and maintain 100 percent compliance with the required certification and accreditation, annual security review, annual testing of security controls and annual evaluation of contingency plans.
DON CIO Memo - December 19, 2008
This memo aligns Senior Information Assurance Officer responsibilities for the Department of the Navy with requirements in the DoD Information Assurance Certification and Accreditation Process (DIACAP)
Instruction 8510.01.
DON Handbook - July 21, 2008
The Department of the Navy DoD Information Assurance Certification and Accreditation Process (DIACAP) Handbook details the baseline DON approach to the DIACAP and the procedures necessary to obtain an accreditation decision for DON information systems undergoing the C&A actions as required under Federal law, and DoD and DON regulations and directives. In addition to this handbook, service unique guidance will be ...
May 20, 2008
The Department of the Navy DITSCAP to DIACAP Transition Guide provides details that guide the implementation of the transition process and procedures established by the DON CIO. These details provide procedural, technical, administrative and supplemental guidance for all information systems, whether business or tactical, used in the automatic acquisition, storage, manipulation, management, movement, control, display, ...
DTG 231330Z MAY 08 - May 23, 2008
This Naval message announces the release of the Department of Defense Information Assurance Certification and Accreditation Process implementation documents to the Department of the Navy.
DTG 311917Z MAR 08 - April 1, 2008
This Naval message provides the way ahead for the Department of the Navy transition to Defense Information Assurance Certification and Accreditation Process.
by Jennifer M. Ellett - October 26, 2011
Certification and accreditation (C&A) transformation is an initiative to align processes, terminology and frameworks for assessing information security risk across all federal agencies, including the defense and intelligence communities. This effort will provide efficiencies, standardization and support to reciprocity.
May 5, 2010
The Department of the Navy Chief Information Officer has updated the security control mapping document originally published in November 2009.
November 18, 2009
The Department of the Navy Chief Information Officer has developed a security control mapping document to support the transition to common security controls among the DON, the Department of Defense, the Intelligence Community (IC) and the rest of the Federal Government.
August 7, 2009
The Department of Defense has recently published the DoD Information Systems Certification and Accreditation (C&A) Reciprocity Memo signed by the DoD Principal Accrediting Authorities - senior officials who represent the interests of the Global Information Grid Mission Areas for C&A.
May 26, 2009
The Department of the Navy Chief Information Officer recently signed the DON Information Assurance and Certification and Accreditation Concept of Operations (CONOPS).
January 16, 2009
The Department of the Navy released its Federal Information Security Management Act (FISMA) Goals for FY09 in Naval message DTG 081605Z JAN 09. This Naval message provides requirements for individual systems to achieve and maintain 100 percent compliance with the required certification and accreditation, annual security review, annual testing of security controls, and annual evaluation of contingency plans.
December 19, 2008
In light of the increased reliability on information systems and an increased visibility of cyber security and number of attacks on systems, the criticality of consistent and thoughtful risk management has been recognized by senior leaders throughout the government.
by Yuh-Ling Su - October 29, 2008
Process and Security Improvements Under DIACAP
On November 28, 2007, the most significant change in security policy in 10 years occurred when the Department of Defense (DoD) Information Assurance Certification and Accreditation Process (DIACAP) replaced the DoD Information Technology Security Certification and Accreditation Process (DITSCAP).
The Department of the Navy commenced full transition to DIACAP on March ...
July 21, 2008
The DON DoD Information Assurance Certification and Accreditation Process (DIACAP) Handbook provides a comprehensive guide for executing certification and accreditation (C&A) processes within the Department of the Navy.