Our Capabilities

 

Trace Systems provides broad range of cybersecurity, intelligence, and critical infrastructure protection support to US Department of Defense, Intelligence Community and Department of Homeland Security customers.

Our support ranges from defending networks, systems and critical infrastructure to providing cybersecurity analysts able to identify, collect, process and take action on cybersecurity threats, vulnerabilities and incidents. We also have capabilities and experience designing, deploying and operating within secure Network Operations Security Centers (NOSCs), Joint Operations Centers (JOCs), Situational Assessment Rooms (SARs), command and data centers.

We provide mission and information operations support to customers such as DISA PEO MA, USCYBERCOM, DIA, Army INSCOM, JTF-GTMO, USCENTCOM, USMC-NOSC, US Forces Afghanistan (USFOR-A) and many others. For example, we provide 24x7 support for theater architecture, management, and execution of all host based Information Assurance (IA) and Computer Network Defense Controls, as part of the DISA-led Secure Configuration Remediation Initiative, as well as JTF-GNO and ACERT guidance. 

We work with McAfee technology products—ePolicy Orchestrator (ePO), Host Intrusion Prevention Systems (HIPS), Antivirus (AV) and Policy Auditor (PA), and Asset Baseline Module (ABM) and Data Loss Prevention (DLP)—that comprise DISA’s Host Based Security System (HBSS) program; develop and create system architectures for Army enclaves taking into account number of nodes and number of active HBSS modules; design and define logical and physical views; provide use case/structure for design planning; lead development of problem resolution, process management, and guidance for defect remediation of critical issues; and interact with McAfee R&D, on-site consultants and customers to ensure timely resolution.

Our core cyber security capabilities also include experience operating in Joint and multi-national information sharing environments as well as other environments that require managing and securing the flow of information among various domains and information security levels.  We provide technicians and engineers who design, operate and maintain cross domain solutions (CDS) as well as provide support for multi-level information sharing and...

Our Expertise

We specialize in cyber security and information assurance (IA) for our Department of Defense customers.  Our capabilities and expertise span the continuum, from the “hands-on” design, deployment, analysis and operation of computer network defense (CND) systems and services to developing, implementing and overseeing the policies and standards used to protect the assets of our customers’ information systems and infrastructures. 

Within the cyber security domain, Trace Systems has extensive experience designing, deploying, testing, operating and maintaining security architectures, systems, services, and solutions, to include Host Based Security Systems (HBSS), Network Access Control (IEEE 802.1x), proxy servers, and firewalls. 

We plan, control, oversee and conduct HBSS installations; acceptance testing and knowledge transfer; tune and troubleshoot policies. We also, administer, document, and maintain DISA/CENTCOM procured HBSS systems; prepare and submit recommended changes in security regulations, best practices, countermeasures, compliance, and threats. Trace provides daily, weekly, and monthly reports and assessments of the HBSS and its operation. Our SMEs function as an intrinsic element of the JNCC-A staff, working with the team and providing our HBSS SME knowledge, experience, and daily efforts to contribute to JNCC-A mission accomplishment.

We provide subject matter expertise in the evaluation, remediation and preparation for security policies, standards, tests and inspections, to include DIACAP analysis and implementation, Information Assurance Vulnerability Assessments (IAVAs), and Command Cyber Readiness Inspections (CCRIs) for enterprise and tactical infrastructures globally.  We also develop, deploy, manage and monitor devices and systems for the intrusion detection, incident management, and threat analysis, risk management and incident correlation.

Trace Systems acts as the USFOR-A Certification Authority (CA) under the appointment of the USFOR-A Designated Accrediting Authority (DAA).  The CA is responsible for implementing the DoD Information Assurance Certification and Accreditation Process (DIACAP) IAW DoD 8510.01.  The CA conducts annual security reviews for all Automated Information Systems (AIS), Voice and Data Enclaves operating on NIPRNet, SIPRNet, CX-I networks, and Stand-Alone systems.  The CA tracks, completes, and reports all actions required to resolve IA issues, alerts, plan of action and milestones (POAMs), etc. The CA Utilizes automated tools to support IA functions including vulnerability scanning and reporting. The CA supports multiple change management processes by evaluating changes for potential impacts to the USFOR-A security posture. In addition to DIACAP the Trace Systems CA has a full understanding and vast experience with the National Institute of Standards and Technology (NIST), the Department of Defense Intelligence Information system Standard (DoDISS) and the Defense Information System Agency (DISA) Connection Approval Process (CAP).  

We plan, control, oversee, and conduct HBSS installations, administer all HBSS related systems, acceptance testing, knowledge transfer, tune and troubleshoot policies, document and maintain HBSS systems, prepare and submit recommended changes in security regulations; countermeasures; compliance; and threats. We function as an intrinsic element of CENTCOM staff to provide our HBSS SME knowledge and experience to further the Cyber Network Defense of CENTCOM.

  • In 2009 with several high profile network security breaches in the DoD, DISA required the implementation of Host Based Security Services (HBSS) on all networks.  Trace Systems was contracted for HBSS engineers for the newly established Joint NETOPS Control Center – Afghanistan (JNCC-A) at Bagram Air Field.  These SMEs were responsible for the engineering, implementation, and sustainment of a theater-wide system to cover all major networks (NIPR, SIPR, and CENTRIXS-ISAF). 

  • From 2012 to 2014, TRACE Systems acted as the USFOR-A Certification Authority (CA) under the appointment of the USFOR-A Designated Accrediting Authority (DAA).   We were responsible for implementing the DoD Information Assurance Certification and Accreditation Process (DIACAP) IAW DoD 8510.01 and conducting annual security reviews for all Automated Information Systems (AIS), Voice and Data Enclaves operating on NIPRNet, SIPRNet, CX-I networks, and Stand-Alone systems.

  • During 2013, Trace IA Engineers remediated Host Based Security Systems (HBSS) deficiencies for Headquarters USCENTCOM and subordinate commands within the Area of Responsibility in Afghanistan in preparation for their Command Cyber Readiness Inspection (CCRI).  As a direct result of Trace IA Engineers efforts, USCENTCOM achieved it’s highest CCRI score within the 95 percentile for both NIPR and SIPR at the Headquarters.  

  • At the end of the first quarter of 2013 Trace Systems team members implemented a Network Access Control solution in Afghanistan utilizing products available to the government and developed tools in house to aid in the deployment.  This solution secured the network throughout Afghanistan by making it virtually impossible to move a device between enclaves(NIPR, SIPR, CENTRIXS, JWICS) which brought Cross Domain Violations that occured this way down to almost none and resulted in no additional costs to the government in software or hardware.