CyberSecurity
For customers such as the Army National Guard (ARNG) and Air Force Combatant Command (ACC), Aretec leads a dedicated Defensive Cyber Operations (DCO). Aretec is capable of supporting 24x7x365 automated monitoring, detecting, scanning, recording, auditing, analyzing, escalating, investigating, reporting, remediating, coordinating, and tracking security-related activities. Aretec is putting analytics in the heart of cybersecurity through the configuration, development, operation, tuning, automation, and maintenance of Application Security and devices on all Local Area Networks and extranets. We provide support for Tier I through Tier IV Security. Our cyber analytic solutions proactively allow organizations to detect and prioritize their biggest threats.
CyberSecurity Capabilities
Risk Management Framework
Aretec’s cybersecurity engineers partner with clients to plan, build and provide successful cybersecurity solutions. Our methodology provides actionable steps to secure systems effectively and provide recommendations to improve compliance with a wide variety of regulatory security frameworks. Aretec not only understands the Risk Management Framework (RMF), we have helped the Army National Guard migrate systems from the old DIACAP Certification and Accreditation (C&A) Process to the new Assessment and Authorization (A&A) process. Currently we have transitioned over 200 Army and Air Force systems to the RMF framework, A&A process, and the Continuous Monitoring (CONMON) and Diagnostic process, and the Continuous Asset Evaluation Situational awareness and Risk Scoring (CAESARS) framework that provides real time system threat data via visual common operating pictures.
SecOps
We incorporate security into all of our processes from requirements gathering thru delivery and operations to build secure systems. We align Security, IT, and Development teams through a shared set of practices, data and tools. This shared visibility, supported by analytics and automation, creates a common language for teams that breaks down barriers and ultimately accelerates innovation.
Infrastructure Security
Design and development of IDS/IPS, Firewalls, Antivirus, Antispam, Security Information and Event Management (SIEM), Forensics, and advanced Persistent Threat platforms. Our team executes vulnerability assessments to identify, quantify and rank asset vulnerabilities based on the risk they pose. Aretec has developed custom automated scripts and signatures that respond to Advanced Persistent Threat (APT), Zero Day Vulnerabilities, and new threats as they emerge on a real time basis.
Aretec's Accelerators
Our experience with security in highly sensitive environments such as DoD, CMS & SEC has allowed Aretec to build secure baselines and establish repeatable security best practices throughout the software development lifecycle & system operations.
Security baselining templates
Pre-built templates along with a project plan for all documents required as part of security baselining and implementation
Assessment Tool Expertise
Aretec has a strong understanding of leading security tools that allows our team to map scan results directly to security standards such as NIST SP 800-53 & NIST SP 800-171
Compliance
Our unique understanding of CMMI & ISSO compliance frameworks allows Aretec to help organizations avoid pitfalls that may come with substandard processes