Information Assurance
Crossfire has managed and successfully delivered many Information Assurance and Security projects for its clients. Crossfire Information Assurance technologists are fully accredited and certified as C.I.S.S.P. in commercial industry information security and are completely familiar with U.S. Government Information Assurance standards.
Information Assurance Projects Successfully Completed By Crossfire
The list of information assurance projects successfully completed by crossfire is varied and distinctive and recently includes the following:Security Audit, Policy Development and Implementation - Tier 1 US Telecom Company
Crossfire C.I.S.S.P.'s recently successfully audited the internal systems of one of the two (2) major U.S. telecommunications carriers. This assignment which reported to the corporate CIO included penetration testing, threat identification, risk management and compliance plan, development of disaster recovery plans, development of an over-arching security plan and program and successful implementation of that plan. The engagement with this client covered the entirety of the on-line systems and web services and included Identity Management, Single Sign-On capability, Access Control Systems, photo-identification card systems, Digital Certificates and Certificate Authorities, Trust model evaluations, Sarbanes Oxely Considerations, Virtual Private Network re-evaluation, Token Administration, Web Security Services and Database and directory evaluation and restructure planning.
Secure Extranet utilizing PKI and Digital Certificates - U.S. Auto Insurance Company
Crossfire has managed and successfully delivered the development and implementation of a Secure Extranet utilizing Public Key Infrastructure and Digital Certificates for a well known Automobile Insurance Company for the secure connection and collaboration between its headquarters operation, its web based services and its thousands of non employee independent agents. This system enables the independent agents who are not directly connected to the company's Intranet to be able to access the company's multiple databases and web services within the scope of their user permissions so that they can more than adequately service their clients subscribing to the company's insurance products and be well covered by the prevailing insurance regulatory policies and rules.
Security Audit, Penetration Testing and Training - Major U.S. Regulatory Bureau
Crossfire C.I.S.S.P.'s successfully audited the internal and on-line systems of a Major U.S. Regulatory Bureau. This assignment commissioned directly by and reporting to the bureau's Chief Technical Officer included penetration testing, threat identification, vulnerability assessment, evaluation of remote server sites, and internet and security policy training for the bureau's administrative and technical staff. Crossfire provided a comprehensive listing of recommendations for security strengthening and policy planning.
Secure Managed Services Consulting - Major Government Integrator
Crossfire provided consulting to one of the 3 largest US Government Systems Integration Companies. The assignment covered Secure IPSec Virtual Private Network System Architecture Development, Secure Extranet with PKI & Digital Certificates Architecture Development, Life Cycle Planning and technical assistance, Technology training of over 50 key employees and internal and external customer education support and on site visit support.