We specialize in the assessment and management of system risk.

Using the National Institute of Standards and Technology (NIST) Special Publications and Risk Management Framework (RMF) for On-Prem and Cloud-Based systems.

Proficient using Enterprise Mission Assurance Support Service (eMASS), Xacta, Marine Corps Certification and Accreditation Support Tool (MCCAST) and RiskVision to streamline the Assessment and Authorization process. Proficient in PKI and infrastructure services needed to provide classified/unclassified mobile communications.

Ncompass Group has been verified and certified by the Department of Veteran Affairs as a Service Disabled Veteran Owned Small Business.

Our team of experienced professionals aids DoD organizations in achieving, maintaining, and renewing their Authorization To Operate.

Ncompass excels at artifact creation and modification, security control implementation and validation, and the submission of program authorization packages. We support our clients from the system categorization to the authorization of the system, and then with all continuous monitoring requirements. We specialize in the seven-step RMF lifecycle using an advanced understanding of the guidance provided in the associated NIST Special Publications.

  • RMF/DIACAP processes
  • FedRAMP and Cloud Security
  • Big Data Technology Security
  • Security Technical Implementation Guide
  • Security Requirements Guide (SRG)
  • eMASS/Xacta Assessment tools

  • ACAS/Retina Vulnerability Scanning
  • Configuration Management
  • Ports Protocols and Services Management
  • Mobile Technologies and Security
  • Operations and Tiered Support
  • PKI and Certificate Management

  • Network Design
  • Network Security and Management
  • Computer Security and Administration
  • Win OS/Linux/MacOS
  • Standard Operating Procedures (SOP)
  • Tactics, Techniques, and Procedures (TTP)

CORE AREA OF EXPERTISE

Cyber Systems Assessment and Authorization

Ncompass helps organizations design risk-based solutions by using the required Federal, NIST processes to build security into the IT systems. It uses a comprehensive evaluation of the system, its data and overall environment to identify and mitigate risk. This service ensures an effective cyber risk management program that engages stakeholders throughout the process to keep them informed of the overall risk profile. These processes are repeated to maintain a continuous monitoring effort and adaptation for the ever changing cyber risks.

CORE AREA OF EXPERTISE

Securing Big Data in GovCloud Environments

Ncompass blends both digital and physical processes to ensure that data, is protected from unauthorized access, corruption and unavailability through the implementation of physical, technical and administrative system security controls. Our Subject Matter Experts use DoD and community intelligence to proactively engage in continuous monitoring efforts to protect systems and data against known threats. We help our customers identify and mitigate vulnerabilities before they can be exploited by attackers. We help our customers identify and prepare for system and data risks, and plan for an appropriate response should an incident occur.

CORE AREA OF EXPERTISE

Risk Management Framework (RMF), Security Risk Analysis, Mitigation & Configuration

In an effort to obtain security effectiveness, organizations must avoid assumptions that their systems and data are protected. System and data owners must engage in effective and continuous risk management programs. Ncompass helps its clients to establish an effective risk management program to protect their critical assets and data from harmful threats.

A Service Disabled Veteran Owned Small Business.

Ncompass, LLC is a Service Disabled Veteran Owned Small Business (SDVOSB) employing Subject Matter Experts (SMEs) who specialize in the assessment and management of system risk using the National Institute of Standards and Technology (NIST) and Risk Management Framework (RMF) for On-Prem and Cloud-Based systems.

IT Security Solutions

FOR ON PREMISES & CLOUD BASED SYSTEMS

Our team of Information Systems Security Officers/Engineers (ISSO/ISSE) can address a multitude of IT security challenges organizations face while keeping mission objectives at the forefront. Understanding that many organizations and their teams are tasked to do more with less, Ncompass brings the efficiencies that come with decades of experience and the ability to leverage the associated lessons learned.

Cleared Professionals

TOP SECRET

Our team of cleared professionals facilitates DoD organizations in achieving, maintaining, and renewing their Authorities To Operate (ATO) in Unclassified, Classified and Top Secret security domains using the seven-step Risk Management Framework process.

Department of Defense Cybersecurity + Risk Management

Get Secure! Protect your networks, systems and data from cyber threats. Improve information security and protect business continuity. Delivered by talented and experienced professionals with a solid foundation of business and security principles demonstrated by successful past performance with DoD Services, Commands and Agencies.