Security Content Automation Protocol (SCAP)

If you are in the vulnerability or configuration scanning business, then you know that SCAP is THE standardized scanning method of choice for federal government customers. This is becoming even more the case as entities such as DISA FSO look to publish their STIGs in OVAL format. Efforts, such as FISMA Continous Monitoring, rely on SCAP scanning to provide the automation necessary to provide the regular reporting crucial to its success. And of course, USGCB scanning is performed using SCAP validated tools. Don’t miss out on the opportunity to participate in this arena by not having your product validated and on the list.


SCAP Validation

We provide a full set of services for all of your SCAP validation needs. Our team of experts will work with you throughout the process until certification is complete and beyond. Since SCAP validation is often paired with a FIPS validation, we will work with you to ensure that the testing timelines are not extended to accomodate each other. We will always be available post certification for any questions raised by your potential customers. Our goal is to ensure you have the best possible experience while keeping costs low and timelines short. Ultimately, if we do this, you will be able to help your customers as quickly as possible.

SCAP Consultation

SCAP Consultation

In addition to full-fledged SCAP validation services, we also help our customers meet their certification goals using the vast experience our team has acquired over the years. We provide as much or as little support in your journey to getting your product certified as you need. Whether its a standalone effort or paired with another certification efforted, we can provide guidance on your best path forward. Whether you need a thorough gap analysis of the product, documentation drafted, full program management or anything in between, we can provide what you need to be successful.