RAND earns their third “Outstanding” CCRI grade — SecureStrux recently announced that they provided continued CCRI assistance for global research leader RAND Corporation. SecureStrux performed the CCRI Staff Assistance Visit (SAV) of RAND’s Pittsburg, PA office and the success of this partnership resulted in yet another “Outstanding” grade. This was RAND Corporations third CCRI within the last two years. The Defense Information Systems Agency (DISA) in Santa Monica, CA conducted their first inspection in February of 2015, than again in May for their Arlington, VA office.
This time around, Defense Security Services (DSS) conducted the CCRI. Again with the hard work and preparation of RAND and third-party assistance of SecureStrux, their score came in as one of the highest scores earned by any DoD organization since IV and the highest for any RAND office thus far.
A CCRI “is a DoD-wide program that is required by both the SIPRNet Connection Approval Process (CAP) and NIPRNet CAP to validate the site’s current network configuration, status of the site’s Authority to Connect (ATC), and the security readiness of the site under direction of the USCYBERCOM.” SecureStrux worked very closely with RAND stakeholders over several months to ensure that all CND Directives, Contributing Factors and all technical security requirements were in adherence to DoD cyber standards.
“RAND’s ‘outstanding’ CCRI grade trifecta is a great achievement. And to cap it off with it being their highest score is really something to be proud of.” noted Shane Cairns, SecureStrux’s CCRI Team Lead and Reviewer who helped prepare RAND for all three of their CCRIs. “Furthermore, remaining compliant at this level for the third time is a true testament to the talented staff and leadership of RAND and says a lot about the training and expertise that SecureStrux has been able to transfer to our good partner.”
“RAND’s ‘outstanding’ CCRI grade trifecta is a great achievement. And to cap it off with it being their highest score is really something to be proud of.”
SecureStrux, LLC is a woman-owned, small cybersecurity consulting firm which focuses on providing specialized services in the areas of compliance, vulnerability management, cybersecurity strategies and engineering solutions. SecureStrux offers a comprehensive range of services that provides clients with proven methods and common-sense approaches to secure their data, build trust with their Clients, and remain compliant with DoD, Federal, and Industry standards.