Cyber Security

Protecting high and medium data (including HIPAA data) for 16+ years without a single data breach

We have provided full scope information system security and compliance services for over 15 years, and we have generated and validated the System Security Plans (SSP) and controls for over 200 systems.

CTAC is security-focused at the data layer.

Our Cloud-based case tracking system at DAB has never suffered a data breach.

We monitor industry communication channels for zero-day, out-of-band and known threats against our customer’s environment.

CTAC ensures that attack surfaces are secured and threat countermeasures are deployed according to NIST standards and guidelines.

We specialize designing and supporting FedRamp and agency specific Certification & Accreditation (C&A), System Security Plans (SSP), and Authority to Operate (ATO).

From a risk analysis perspective, CTAC has experience compiling Certification and Accreditation (C&A) packages for numerous systems and multiple agencies. These packages required completion of Risk Assessments, Security Assessment Reports, System Security Plans (SSP) among other supporting documents in order to obtain an Authorization to Operate (ATO). These documents include full listings of IT components comprising the system in addition to assessing the security profile of the system.

CTAC performs vulnerability and compliance management for a variety of systems and applications across HHS and GSA.

We provide incident and problem response.

A well-executed IDAM solution can increase user productivity, drive an enhanced user-experience, and reduce administrative load.

IDAM tools include but are not limited to LDAP, third party single sign on (SSO), and Multi-factor authentication (MFA).