IATRP

INFOSEC Assurance Training and Rating Program

We realize that many students have not had their name added to the IATRP certified list, or information updated. We apologize for the delays and any inconvenience. The website is in the process of being reworked without any change to what you should see. Please contact iatrp@iatrp.com if you feel your information is not correct or needs updating. Thank you for your patience and we apologize for any inconvenience.

INFOSEC Info
INFOSEC Assurance

IAM Info
IAM Certified People
IAM Certification Classes
IAM Modules

IEM Info
IEM Certified People
IEM Certification Classes
IEM Modules

IA-CMM Info
Awards & Ceremonies
Rated Organizations
Manual - Version 3.1

Other Links
IA Regulations Comments

Tools
Functional Flow
Site Map

What's New
- New Look & Feel
- IAM version 3.1

Under the authority from National Security Directive (NSD) 42, the National Security Agency (NSA) is tasked with raising the Information Security (INFOSEC) Assurance (IA) posture of National Security Systems of U.S. Government agencies and departments. The Memorandum of Understanding (MOU) in place between NSA and the National Institutes of Technology (NIST) also allows NSA to examine non-national security systems as well. To support this task, NSA provides various services to identify and analyze vulnerabilities in operational system/networks. Since NSA has limited resources to meet the ever-growing demand for INFOSEC Assurance services the INFOSEC Assurance Training and Rating Program (IATRP) was developed as a partnership between NSA and private INFOSEC Assurance providers. Therefore, NSA has contracted out to Security Horizon and EDS to provide these services.

NSA's IATRP Program sets the standards for INFOSEC Assurance services through the INFOSEC assurance methodologies (INFOSEC Assessment Methodology, INFOSEC Evaluation Methodology), trains and certifies individuals in the methodologies, and rates INFOSEC Assurance organizations through the use of a standard metric INFOSEC Assurance - Capability Maturity Model (IA-CMM). NSA then provides this information to consumers so they are better informed when negotiating with INFOSEC Assurance Providers. To request an IAM or IEM assessment, , please contact any one of the following Companies:

Security Horizon: Mr. Ed Fuller at EFuller@SecurityHorizon.com
EDS: Mr. Paul Holmes at Paul.Holmes@EDS.com

Or any of our IA-CMM Rated Companies listed below:

Pacific Gas and Electric Company: Mr. Doug Stevens at exsi@pge.com
International Network Services: Mr. Jim Tiller at Jim.Tiller@INS.COM
Backbone Security, Inc.: Mr. Jim Wingate at JWingate@BackboneSecurity.com
Federal Reserve Bank of NY:
Honeywell Technology Solutions: Mr. Robert Guess at Robert.Guess@honeywell.com
SRA International, Inc.: Mr. Dan Chandler at Dan_Chandler@sra.com

To request an IA-CMM Appraisal, please contact:

Security Horizon: Mr. Ed Fuller at EFuller@SecurityHorizon.com

*Point of contacts for these companies may also be obtained from this site: http://www.iatrp.com/companies.php and click on "company info"