|
Click here to view TISTA's Capabilities Statement
TISTA offers expertise in Healthcare IT, IT security and engineering support, network and critical infrastructure protection, IT operations and maintenance, information assurance, continuity of operations plans (COOP), risk management, IT architecture, certification and accreditations (Department of Defense [DoD] and IC systems), software and database development, help desk, and network support.
In recent months, TISTA has been privileged to provide services to the following Federal and private agencies: U.S. Department of Agriculture (USDA); Internal Revenue Service (IRS); Defense Information Systems Agency (DISA); U.S. Department of Veterans Affairs (VA); Army National Guard (ARNG), National Guard Bureau (NGB); U.S. Office of Personnel Management (OPM); Metropolitan Washington Airports Authority (MWAA); U.S. Air Force; U.S. Department of Commerce (DOC); National Institutes of Health (NIH); National Institute on Drug Abuse (NIDA); U.S. Department of Transportation (DOT); DISYS; DELL.
Recent Projects:
Below, we provide project summaries demonstrating our recent tasks.
|
|
DLA Enterprise Information Assurance & Cyber Security Operations |
Under this contract, TISTA provides Program Management support for Cyber Security and Information Assurance to the DLA’s Customer DAA Accredited Enclaves (CDAE) located in the Defense Information Systems Agency’s (DISA) Defense Enterprise Computing Centers (DECC) at Ogden, UT (DLA Ogden Environment - DOE) and Mechanicsburg, PA (DLA Mechanicsburg Environment - DME).
TISTA provides Acquisition and Maintenance of the Authorization to Operate (ATO) via the Defense Information Assurance Certification and Accreditation Process (DIACAP); Vulnerability Management Support; Account Management Support; Incident Response Planning & Support; Continuity of Operations Support; Information Assurance Operations Support; and, Security Design Documentation. We provide technical and information assurance operations support to ensure that enterprise systems being deployed or already in use operate in a technically sound and is in compliance in the best practices as defined by NIST and other internationally accepted organizations. We provide the guidance to application support teams, IAM, IAOs, SAs, DBAs, etc. in order to ensure that the STIGs are implemented correctly. Additionally, we provide information assurance guidance for all applications transitioning into a CDAE or Enterprise ATO package(s).
TISTA continuously evaluate the IA Posture of the DOE/DME. We monitor such activities as the Change Advisory Board (CAB), Technical Change Board (TCB), actions of the Programs Management Office relative to the introduction of new applications into the DOE/DME, we continually assess the IA impact of proposed changes, and in coordination with the DOE/DME IAM, we document IA status changes, identify and capture evidentiary artifacts, and update the status of the IA Controls established as the baseline for DOE/DME. TISTA Senior Security Engineers provide both Information Assurance Officer and Subject Matter Expertise in monitoring and documenting the IA Posture within eMASS.
|
|
USDA FSIS Information System Security Program Support |
To support the objectives of the Information System Security Program (ISSP) Certification and Accreditation (C&A) Management work stream, TISTA program management support staff provides overall program management support to the ISSP C&A Program. TISTA team members work to identify ISSP C&A risks, develop risk impact assessments and risk mitigation strategies. TISTA Information System Security Officers (ISSOs) work with the OCIO Program Management Office (PMO) to effectively integrate information assurance C&A tasks and management controls into the FSIS System Development Lifecycle (SDLC) and the FSIS acquisition processes. Our ISSOs support the FSIS CISO by providing information assurance technical advice and thought leadership, including continuous update of ISSP C&A program management tools and processes to align with federal requirements and industry best practices.
|
|
The Army National Guard-Strength Maintenance Division (ARNG-GSS) |
TISTA provides performance improvement recommendations, organizational development assessments, professional, administrative, and technical services in support of the ARNG. The scope of this contract encompasses, but is not limited to, the following type functional areas: organizational assessments using Information Technology based methods, procedures and models, cost analysis, special projects/studies, information technology support, facilitation, administration, logistics, consulting, and training support services. TISTA also uses current information technology to record, track, coordinate, manage, retrieve, and promulgate data and other associated information.
Specific areas of support include providing planning, budgeting, managing, and executing programs while ensuring all ARNG plans and guidance are incorporated and integrated into the strategic plan. TISTA is also responsible for proper coordination of authorizations and vouchers for travel claims and/or expenses. We provide customer service to ARNG personnel for all travel related requirements. TISTA employees plan and obligate travel budget; reconcile travel budget; audit and research travel submissions per Joint Federal Travel Regulation (JFTR). We are responsible for implementing the regulations, policies, and programs governing enlistment eligibility regarding suitability issues for Soldiers entering the United States ARNG. We provide data entry, statistical analysis, and the production of a variety of reports. TISTA employees are also responsible for monitoring, gathering, analyzing, managing, manipulating data, and preparing briefings, reports, and charts.
|
|
Information Protection Program Support for the VA’s Field Security Operations Program Management Office |
|
TISTA’s information assurance engineers currently provide onsite support to the VA’s Information Protection initiative. TISTA uses CISSP security expertise and industry best practices such as ISO/IEC 17799 and NIST and NSA guidance to assess the VA Information Protection architecture and develop action plans to remedy security framework deficiencies. TISTA's current effort to support VA’s Office of Management and Budget’s (OMB’s) memorandum (M-06-16)—which emphasizes the Federal requirement, as per NIST Special Publication 800-53 significantly enhances the response to the VA’s Office of Inspector General (OIG) audit report on the loss of VA veteran information.
Under this contract, TISTA is identifying VA’s security and privacy requirements; assessing capabilities of current centralized security or privacy services; analyzing security and privacy gaps, capabilities, and trade-offs; proposing technical solutions or updating the architecture; evaluating security vendor responses; applying defense-in depth methodology at an enterprise level; designing an enterprise security and privacy framework; integrating current organizational initiatives into current technologies; and capturing organizational performance objectives and aligning technologies to VA’s strategic goals. |
|
Information Assurance Support for DISA’s Joint Spectrum Center (JSC) |
|
TISTA provides IT and information assurance support on this project. In accordance with the DoD Information Technology System Certification and Accreditation Program (DITSCAP), TISTA’s onsite employees maintain a secured, certified, and accredited IT infrastructure. We conform to the mandates specified in DoD’s Directives 8500.1 and 8500.2 of the new DoD Information Assurance Certification and Accreditation Program (DIACAP). As part of the DITSCAP process, TISTA supports DISA JSC in developing and maintaining a System Security Authorization Agreement (SSAA).
Additional responsibilities under the contract include acting as a technical liaison to a classified project. TISTA played a key role in helping the team develop a system architecture that met DISA’s stringent security requirements. TISTA engineers also configured all related servers to comply with DISA’s Security Technical Implementation Guides (STIG). We continue to help the project team ensure that the system complies with existing and new security policies as they are released by DISA. Other tasks under this effort include helping DISA JSC update security policies, perform system security assessments with tools, follow guidelines set by DoD/DISA, and maintain security tools in use by DoD/DISA. |
|
Web Based Case Tracking System for Department of Justice (DOJ) |
|
As a subcontractor the AT&T Federal solutions, TISTA is currently assisting DOJ in creating and maintaining a comprehensive Web based incident and case tracking system that is used nation-wide by Department of Justice and other agencies such as the Bureau of Alcohol, Tobacco, Firearms and Explosive, Bureau of Prison, Drug Enforcement Administration, Federal Bureau of Investigation, US Attorneys, US Postal Services, and other agencies. This comprehensive Web-Portal system allows for victim agents to log-in incident/case report into the system, which activates a tracking system. The system keeps records of all development for respective cases (including verdicts). The information is then shared via a secured, role base Identify Management and Access Control System. |
|
|