Cybersecurity

Our Approach:

iWorks has experience providing cybersecurity services employing both the National Institute of Standards and Technology’s (NIST) Risk Management Framework (RMF) and the Continuous Diagnostics and Mitigation (CDM) Framework. We work with our clients to successfully deliver cybersecurity solutions throughout the enterprise security lifecycle.

Offerings:

  • Risk and Compliance Management
  • Identity and Access Management (IAM)
  • Assessment and Authorization (A&A) Services
    • System Categorization
    • Security Control Selection and Implementation
    • Security Control Assessments
    • Plan of Action and Milestones (POA&M) Management
    • Security Control Monitoring
  • Vulnerability Assessment Scanning
  • Network, Server, and Device Hardening in accordance with Defense Information Systems Agency (DISA) Security Technical Implementation Guides (STIG)
  • Security Device Management (virtual private networks (VPN), firewalls, intrusion detection systems (IDS)/intrusion prevention systems (IPS), public key infrastructure (PKI))
  • Security Information and Event Management (SIEM)

Differentiators:

Client Testimonial

“Management was very responsive to FMCSA needs and requirements. [iWorks] personnel were well-trained and highly capable.”

— Fed Civilian Client

  • Processes:

    We developed a security management framework (iSecMGR) to help our clients achieve and maintain security compliance, safeguard sensitive and classified government programs and systems, and align information security policy and strategy with business goals. We are an International Organization for Standardization (ISO) 27001 certified company.

  • Technology:

    The iWorks Solution Lab allows our team to continually evaluate and work with new and relevant cybersecurity and log analytics tools, including Splunk, Elasticsearch, Logstash and Kibana (ELK), Nessus, Microsoft Baseline Security Analyzer (MBSA) and Dynatrace security and application monitoring.  Click here to learn more.

  • People:

    Our team brings experience and expertise covering a wide range of cybersecurity frameworks, practices and technologies from NIST RMF and CDM Frameworks to Nessus Vulnerability Assessment and Dynatrace security and application monitoring. Our team members have security certifications including Certified Information Systems Security Professional (CISSP) and Security+, and security technology certifications including Dynatrace.