Government IT Security Solutions | Sword & Shield Enterprise Security, Inc.

Government agencies are faced with ongoing challenges to meet regulatory compliance requirements and to ensure that the data and systems are secure. Historically, a focus on compliance has not necessarily resulted in the most secure systems because limited budgets and resources force agencies to meet compliance requirements at the expense of practical and pragmatic security solutions. Sword & Shield is committed to helping your agency move from this compliance-based approach and into a risk-based security approach that would allow your experts to prioritize both compliance and security-related remediation objectives.

Contracts

We maintain multiple contract vehicles with Federal agencies to support reselling our both our security consulting services as well as our security products. Current contracts include:

GSA Schedule 70 contract (GS-35F-0772R) for security consulting services
GSA Alliant Contract – subcontractor to BAE Systems, Inc., GWAC
NASA SEWP IV contract (NNG07DA21B) for IT products and integration services. Use our federal quote for or read our NASA SEWP Ordering Guide.
If you are an OEM with a direct sales force selling to the federal government and you do not have a government contract vehicle to conduct business or you have a GSA schedule and find that the contracting officer prefers to use SEWP to fairly compete opportunities, we may be able to assist you. Call 865 244-3535 or send an email to sewp-sales@sses.net.

Qualified Staff

Our engineers also maintain various level of security clearance to include both Secret and Top Secret. More than 80 percent of our engineers have achieved the Certified Information System Security Professional (CISSP) certification and many maintain additional industry and product certifications including Global Information Assurance Certification (GIAC), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA) and Qualified Data Assessor (QSA) certifications.

Practical Services to Reduce Risk and Support Compliance

We offer proven, practical services that balance compliance requirements with an effective program to prevent security threats.

Government Sector Solutions	Benefits of the Sword & Shield Approach
Security Testing	Reduces risks that someone with the intent to do harm could bypass security controls and gain access to sensitive information. Provides verification of security controls and meets independent, third-party assessment requirements.
Application Security Assessments	Provides peace of mind that your web applications, whether developed in-house or by a subcontractor, are not easily breached by those with the intent to do harm.
Security Risk and Compliance	Provides Agencies with a solution to continuously monitor compliance and to address security issues in real-time.
PCI Compliance	Integrated Risk and Compliance approach enables Agencies to address all compliance issues (FISMA, PCI, etc.) as part of a single, comprehensive assessment.
Website 508 Compliance	Contact us for more information on this service.
Forensics Investigations	Reduces workload on the IT department from time consuming electronic investigations and insures that evidence is preserved and admissible in a court of law.
eDiscovery	Bridges the knowledge gap between IT and Agency legal department when producing electronic evidence and expert witness in litigation.
Incident Response	Provides rapid response when you suspect someone has compromised PII data on your systems.

A Risk-Based Approach to Meeting Regulatory Compliance

The Federal Information Security Management Act (FISMA) drives the federal government’s agenda when it comes to IT security. As FISMA and the guidance from the National Institute of Standards and Technology (NIST) continue to evolve, issues such as continuous monitoring and assessing risk are the latest challenges. Sword & Shield’s Risk & Compliance Shield™ provides your agency with a comprehensive look at your enterprise and enables you to focus on high-priority vulnerabilities and the associated controls needed to improve compliance, as well as security.

In addition to directly supporting agency security requirements, our risk and compliance solutions are perfectly suited to support contractors and subcontractors who require compliance with NIST guidelines as a result of relationships with these agencies. Our experience supporting the Certification and Accreditation process, combined with our comprehensive risk and compliance and security testing knowledge separates us from the traditional IT security company.

Futures Lab

While our core focus is security and compliance, we also provide support to a major federal agency through our Futures Lab. This lab is designed to test emerging technologies to support advances in the enterprise architecture for this agency. We maintain a fully-functional data center staffed to support this ongoing effort and to work closely with many major hardware and software vendors to test their latest solutions. This capability also can be provided to other agencies with similar requirements and could leverage our experience to provide a cost-effective solution with significant capabilities.

Real Success Story

A Sword & Shield federal client with a highly-distributed, public-facility computing architecture requested support to assess the security of their enterprise. We provided comprehensive risk assessment and security testing of their external and internal systems and developed vulnerability lists that enabled this agency to significantly improve their level of security. Our risk-based approach also enabled them to focus on the remediation targets that were of the greatest importance and to prepare for both compliance and security-related audits.

Sword & Shield is a Veteran-Owned Company