ERT understands that information security is an integral and indispensable part of all business operations that involves ongoing planning, assessment, protection, detection, response, mitigation and training. ERT has established corporate IT security standards of best practices to protect the availability, integrity, and confidentiality of data in an organization's information technology system. ERT provides life cycle IT security services to multiple agencies within NOAA which include the National Weather Service (NWS), the National Environmental Satellite, Data, and Information Service (NESDIS), and the National Ocean Service (NOS) Chief Information Officer (CIO).
- Security Policy and Planning
- Assessment and Authorization
- Security Implementation
- Security Operation, Support, and Training
ERT assists in development, review, and maintenance of system security plans, policies, procedures, and best practices; conducts annual testing of contingency and disaster recovery procedures; develops IT security documentation for system security plans, disaster recovery, and continuity of operations plans; provides expert advice and recommendations based on the National Institute of Standards and Technology (NIST)'s Special Publication (SP) 800 series, Federal Information Processing Standards (FIPS), and industry best practices.
ERT performs system testing and evaluation to assess the security posture of information technology systems; conducts vulnerability scans; performs compliance scans; assists ISSO to mitigate system risks and remediate vulnerabilities; manages the Assessment and Authorization (A&A) process for High and Moderate systems and applications per NIST guidance; develops and maintains A&A documentation; reviews for completeness and compliance with security policies, procedures, and guidance; develops and tracks all Plans of Action and milestones to ensure the highest level of security posture is maintained; and performs independent assessments of security controls for applications and systems.
ERT develops, implements, and maintains an IT security program consistent with Federal laws and agency regulations, policies, procedures, and standards; ensures implementation of all organizational security policies, plans, and procedures; designs, implements, and integrates controls to meet security requirements within the risk management framework; evaluates new security technologies and applications, and recommends change options to the information system owner; applies robust configuration management and change control processes; ensures distribution, tracking, and timely implementation of approved security alerts, patches, and bug fixes; and delivers secure and compliant cloud solutions integrating existing agency architecture with that of service providers.
ERT provides system monitoring, network intrusion detection, audit logging services, and compliance reporting; maintains the security baselines for systems; updates hardware, patches software, and performs backups and restores; responds to IT security incidents including but not limited to intrusions, system compromises, inappropriate user actions, use of peer-to-peer and potentially unwanted programs, detection of malware, spyware, or viruses, and loss or theft of government IT resources; investigates security violations, performs computer forensics as needed, and generates detailed reports; schedules and coordinates local security training and awareness programs for users; ensures that privileged users receive system-specific training prior to being authorized access to the system; ensures specialized IT security training is available to all system and network administrators.