NSSPlus Deploys Application Security, Inc. Solutions to Ensure Continuous Compliance in DISA STIG Database Audit Process
NEW YORK and Falls Church, VA, October 5, 2009 ─ Application Security, Inc., the leading provider of database security, risk and compliance (SRC) solutions for the enterprise, and Network Security Systems Plus, Inc. (NSSPlus), an Information Assurance (IA) and security engineering and consulting company, today announced a joint initiative to bring standardized technology and processes to DISA STIG (Defense Information Systems Agency Security Testing and Implementation Guide) database audits for the Department of Defense (DoD).
NSSPlus currently conducts IA, IA mitigation, Certification and Accreditation (C&A) and network security engineering support to the TRICARE Management Activity (TMA) in support of their IA and Department of Defense Information Assurance Certification Accreditation Process (DIACAP) program with Application Security, Inc.’s agentless database SRC audit solution, AppDetectivePro™.
For over five years, NSSPlus has used AppDetectivePro as their standard database audit solution for TMA and TMA contractor database audits. This partnership ensures that AppDetectivePro’s coverage of the DISA STIG requirements remains unparalleled in the industry.
“Our key objective is to ensure successful audits of database systems within TRICARE, and to report those findings to the TRICARE Certifying Authority,” said Felix Thomas, CEO and President, NSSPlus. “AppDetectivePro is the most comprehensive database SRC solution in the market and the only database audit solution we could standardize on for compliance with the DISA STIGs.”
“Application Security, Inc.’s work with NSSPlus has been instrumental in establishing best practices for auditing DoD database systems via the DISA STIGs,” said Josh Shaul, Vice President, product management, Application Security, Inc. “The goal of our collaboration is continuous compliance for DoD databases.”
About Application Security, Inc.
Application Security, Inc. is the leading provider of agentless database security, risk and compliance (SRC) solutions for the enterprise. Application Security, Inc.’s agentless approach - AppDetectivePro for auditors and IT advisors, and DbProtect for the enterprise - delivers the industry’s most scalable database SRC solution and is in use around the world in the most demanding environments by over 1,700 customers. The company was named to Inc. Magazine’s 2007 (Inc. 500) and 2008 list of America’s Fastest Growing Private Companies, and was also named to the 2008 Deloitte Technology Fast 50 by Deloitte & Touche.
For more information, please visit www.appsecinc.com.
DbProtect and AppDetetectivePro are trademarks of Application Security, Inc. All other product names, service marks, and trademarks mentioned herein are trademarks of their respective owners.
About Network Security Systems Plus (NSSPlus)
NSSPlus is a leading network security and information assurance consulting services and products company. Their security engineers and information assurance consultants perform comprehensive evaluations of the technical and non-technical security features of DoD Military Health System/TRICARE Management Activity Contractors’ enterprise networks. They implement safeguards and remedies in support of the C&A process under Department of Defense Information Assurance Certification and Accreditation Process (DIACAP). Their primary support objectives are to insure that system development, design, and implementation methodologies are compliant with the DISA STIGs and other industry best practices.
NSSPlus has over 9 years of IA, IA mitigation, C&A and network security engineering support experience with TMA and other DoD components. This includes specific experience in interpreting and applying the DISA STIGs and Checklists to enforce configuration compliance on network components and applications.
NSSPlus has in-depth expertise with DISA STIGs, SRR and Security Checklists for all hardware platforms and operating systems including mainframes, midrange, network servers, and workstations. They configure security scanning policies for automated tools in order to provide tractability to the DISA STIGs, National Security Agency (NSA) and other industry best practices. NSSPlus corporate offices are located at 5205 Leesburg Pike, Suite 505, Falls Church Virginia.
NSSPlus is a registered trademark of Network Security Systems Plus, INC. All other brands and products referenced herein are acknowledged to be trademarks or registered trademarks of their respective holders.
Forward-Looking Statement - Any statements contained in this release that are not historical facts are forward-looking statements, as defined in the Private Securities Litigation Reform Act of 1995. All forward-looking statements rely on assumptions and are subject to various risks and uncertainties that could cause actual results to differ materially from expectations. In particular, statements in this release regarding the estimated total value of the contract are based on the assumption that the government will exercise all option years, which is entirely within the government's discretion.
Contact:
Mr. Felix A. Thomas, President & CEO, NSSPlus
703.933.7040,
This e-mail address is being protected from spambots. You need JavaScript enabled to view it
