Skip to the main content.
Under Attack? Login
Under Attack? Login
Managed Extended Detection & Response
Layered cybersecurity controls for effective risk management and rapid response.

24/7/365 Monitoring & Alerting
Compromise Assessments
Threat Hunting
Vulnerability Management

Book MXDR Demo

Government Programs
Integrated technology, solutions, and services that support rapid innovation within the DoD ecosystem.

CMMC Preparation & Assessment
Cybersecurity Assurance Readiness (CSAR/RMF Pro)
ATO/RMF Support

Book GP Demo

Professional Services
Expertise in security strategy, incident response readiness, policy development, and risk assessments.

Risk Assessments
vCISO
Penetration Testing

Book ProServ Demo

Digital Forensics & Incident Response
Are You Under Attack?

If you are concerned about a potential threat or are experiencing a breach, contact our 24/7/365 emergency hotline at 888-860-0452.

CONTACT US

Resources

Subscribe-to-NetSec-News-v4Subscribe to NetSec News

Sign up to receive our biweekly newsletter that covers what's happening in cybersecurity including news, trends, and thought leadership.

SIGN UP

Company

Ingalls Information Security

At our core, Ingalls is a company that strives to be helpful to our clients while continuously innovating and evolving our technology and solutions. Since 2010, we have been dedicated to building a team and product that can stay steps ahead of threats, attacks, and vulnerabilities in an ever-changing landscape.

Meet The Leadership Team

1 min read

A&A Services - Pay Now or Later?

Picture of Brandi Pickett Brandi Pickett Mar 14, 2023 9:00:32 AM

Government Programs ATO GCR

Being part of the DoD Supply Chain means taking cybersecurity seriously for your organization and the product you are developing. DoD enforces Government Compliance Requirements you should be familiar with, such as:

  1. DFARS 7012, performing a NIST SP 800-171 Self Assessment and coming soon the Cybersecurity Maturity Model Certification (CMMC).
  2. DoD Policy for the Assessment & Authorization (A&A) Process utilizing the Risk Management Framework (RMF) in which an Authorization Decision such as an Authorization to Operate (ATO) is rendered.

At Ingalls, we offer bundled services to support Government Compliance Requirements. We have DFARS 7012, CMMC, and RMF/ATO expertise. Ingalls is a CMMC Registered Practitioner Organization (RPO).

At Ingalls, we often get asked, “Why should I pay for A&A services in a SBIR Phase 2?”

There's nothing that says you have to, but there are some benefits to paying for A&A services upfront:

  1. Save time and resources: Waiting until after a contract award to engage a cybersecurity service provider for A&A services can cause delays and extra work for your team, potentially impacting your ability to deliver on time. By engaging a provider such as Ingalls upfront, you can reduce the time and resources required to complete the A&A process, allowing you to focus on other critical tasks.

  2. Mitigate risk: The A&A process identifies and mitigates potential security risks in your information systems and the technology you are building for the DoD. By engaging a cybersecurity service provider for A&A services upfront, you can ensure that any vulnerabilities or non-compliance issues are identified and addressed early.

  3. Demonstrate a commitment to security: Engaging a cybersecurity service provider for A&A services upfront demonstrates your commitment to security and compliance, which can be critical in building trust with potential customers.

Ingalls can offer support by:

  1. Performing a discovery and scoping call for DFARS 7012, CMMC, and RMF/ATO.
  2. Providing a cost estimate for you to insert into your SBIR proposal.
  3. Producing a Letter of Support to emphasize your commitment to cybersecurity by engaging with Ingalls as your cybersecurity service provider.
Subscribe to Network Security News