United States Secret Service (USSS) Information System
Security Officer (ISSO) Support
The Federal Information Security
Management Act (FISMA) requires that every Federal IT system
or major application be officially assigned to an ISSO. The
ISSO serves as the primary security point of contact (POC)
for each system/major application. The USSS needed support
services in the form of skilled and experienced security
professionals to act as ISSOs for USSS systems and/or major
DRC is providing ISSOs to support all
systems and major applications within the USSS IT FISMA
inventory, classified and unclassified. As part of this
effort, our ISSOs provide support a wide range of
Certification and Accreditation (C&A) activities.
For unclassified systems, our C&A
approach complies with the DHS MD 4300A series policy and
handbook and the NIST SP 800 series guidance. For the
National Security System C&As, our approach complies with
the DHS MD 4300B series policy and handbook and the DoD
Information Assurance Certification and Accreditation
Process (DIACAP) requirements and guidance. For the
Sensitive Compartmentalized Information (SCI) System C&As,
our approach complies with the DHS MD 4300C series policy
and handbook and the DIACAP and Director Central
Intelligence Directive (DCID) 6/3 requirements/guidance.
For all three types of systems, we
create and manage Program of Actions and Milestones (POA&Ms),
develop security control descriptions, document security
test and evaluation results, and provide input to security
metrics and scorecards.
DRC ISSOs are helping to bring the FISMA
Scorecard for USSS assigned systems/applications up to a
passing score and then maintain passing scores throughout
their life cycle. In addition to the annual FISMA scorecard,
our ISSOs help ensure passing scores for assigned systems
and/or applications for each DHS and USSS inspection, FISMA/C&A
compliance review, and IT/Privacy/Financial audit, including
the complete C&A package. As a result, DRC ISSOs are helping
ensure the strongest possible security posture for each USSS
system and/or application.
Interested in more information?