Apex Assurance Group offers consulting services for Joint Interoperability Test Command (JITC) certification and Security Technical Implementation Guide (STIG) compliance. We provide the following services for IA compliance and Unified Capabilities Approved Products List (UC APL) listing:
Training Workshops
Our training workshops will teach your staff about Department of Defense Information Assurance initiatives, including overview of UC APL, STIGs, JITC, and the relationship of each. Learn processes, requirements, and best practices.
STIG Creation
Create new STIGs for product-based SRGs. This service is offered to vendors who wish to have a custom, product-specific STIG. This document could be used as the basis for an actual DISA STIG to be adopted.
STIG to SCAP Transformation
Transform an existing STIG to SCAP content to meet requirements to provide capability for continuous monitoring.
IA STIG Product Assessment
We can help you implement STIGs in your product. Apex Assurance Group will help you design for compliance and plan for compliance.
JITC Certification and UC APL Assistance
Apex Assurance Group will provide support to get a vendor product certified and placed on the UC APL. We offer the following tiered service layers:
- Pre-certification STIG gap analysis – Evaluating a product for certification worthiness.
- Preparation for STIG assessment for product – Preparing for a scheduled JITC certification test.
- Execution of assessment – provide consulting and liaison for on site testing of the product.
- Post STIG assessment findings review – Provide guidance and support for responses on the JITC IA findings report.