DIACAP Overview                              Download PDF (& slideshow) 

infectionvectors.com

July/August 2006

The Department of Defense (DoD) Information Assurance Certification and Accreditation (C&A) Process (DIACAP) serves as the replacement for the widely-employed DITSCAP. Although the C&A process has been specified for US DoD use, there are lessons in security assurance that can be applied to all organizations: government, commercial, and not-for-profit. 

DIACAP outlines the path that an organization can take to both establish a sound security posture (one built upon the needs of the system under review), integrate defensive requirements with the rest of the enterprise, and maintain network security for the life of the enterprise, not just a specific platform. 

The paper and slideshow below can serve as the entry point to building a strong DIACAP  (or DIACAP-like) program within an existing C&A shop.

Paper:

Reciprocal: DIACAP Review (PDF available) 

Slide Presentation: 

DIACAP Overview for C&A Professionals

Available as PDF and PPS

If either or both of these documents helps your DIACAP transition, please drop us a note.