DIACAP requires that the security posture of any DoD system be evaluated at least annually. A system must undergo the full DIACAP process prior to being placed into service, whenever a major change occurs, and prior the expiration of the accreditation of the system if it already has an ATO. The DAA issues an ATO for a system for up to 3 years.
No - DIACAP required that the posture be at least partially reviewed every year (for the Annual Security Review - aka ASR) except for very sensitive systems that must be reviewed more often - usually every six months. A comprehensive review is required every 3 years under DIACAP.
DIACAP replaced DITSCAP as the process for certification and accreditation of DoD information systems. DIACAP supersedes DITSCAP.
DIACAP is DoD Instruction 8510.01. In that respect, SOME DoD instructions fall under DIACAP, but most DoD instructions have nothing to do with DIACAP.
DIACAP is established by DoD Instruction 8510.01.
DIACAP Knowledge Service.
According to DODI 8500.2, the "DIACAP team members" are defined as: E2.25. DIACAP Team. Comprised of the individuals responsible for implementing the DIACAP for a specific DoD IS. At a minimum the DIACAP Team includes the DAA, the CA, the DoD IS program manager (PM) or system manager (SM), the DoD IS IA manager (IAM), IA officer (IAO), and a user representative (UR) or their representatives.
No - DIACAP (DoDI 8510.01) superseded DITSCAP (DoDI 5200.40) in 2006.
The first DIACAP document that lists the team members will usually be a document called the System Identification Profile (SIP).
Jim, your organizations IAM, has been contacted by the Program Manager to assist in implementing the DIACAP. Jim is not required to assist the PM in this activity, and should pass this activity off to the IAO (or IASO).
According to DODI 8500.2, the "DIACAP team members" are defined as: E2.25. DIACAP Team. Comprised of the individuals responsible for implementing the DIACAP for a specific DoD IS. At a minimum the DIACAP Team includes the DAA, the CA, the DoD IS program manager (PM) or system manager (SM), the DoD IS IA manager (IAM), IA officer (IAO), and a user representative (UR) or their representatives.
Every hour, or as required
source for DIACAP resources and knowledge services