0
DIACAP requires that the security posture of any DoD system be evaluated at least annually. A system must undergo the full DIACAP process prior to being placed into service, whenever a major change occurs, and prior the expiration of the accreditation of the system if it already has an ATO. The DAA issues an ATO for a system for up to 3 years.
What else can I help you with?
The dod instruction which covers diacap states that the ia posture of an organization will be reviewed every two?
No - DIACAP required that the posture be at least partially reviewed every year (for the Annual Security Review - aka ASR) except for very sensitive systems that must be reviewed more often - usually every six months. A comprehensive review is required every 3 years under DIACAP.
Does ditscap supersedes diacap?
DIACAP replaced DITSCAP as the process for certification and accreditation of DoD information systems. DIACAP supersedes DITSCAP.
Are dod instruction under DIACAP?
DIACAP is DoD Instruction 8510.01. In that respect, SOME DoD instructions fall under DIACAP, but most DoD instructions have nothing to do with DIACAP.
What is the dod instruction which covers diacap?
DIACAP is established by DoD Instruction 8510.01.
Where will you find role descriptions for DIACAP team members?
DIACAP Knowledge Service.
Who are the diacap team members responsible for implementing diacap?
According to DODI 8500.2, the "DIACAP team members" are defined as: E2.25. DIACAP Team. Comprised of the individuals responsible for implementing the DIACAP for a specific DoD IS. At a minimum the DIACAP Team includes the DAA, the CA, the DoD IS program manager (PM) or system manager (SM), the DoD IS IA manager (IAM), IA officer (IAO), and a user representative (UR) or their representatives.
Does DISCAP supersede DIACAP?
No - DIACAP (DoDI 8510.01) superseded DITSCAP (DoDI 5200.40) in 2006.
You are about to begin the diacap process where will the diacap team members be listed?
The first DIACAP document that lists the team members will usually be a document called the System Identification Profile (SIP).
Jim your organizations IAM has been contacted by the Program Manager to assist in implementing the DIACAP. Jim is not required to assist the PM in this activity and should pass this activity off to th?
Jim, your organizations IAM, has been contacted by the Program Manager to assist in implementing the DIACAP. Jim is not required to assist the PM in this activity, and should pass this activity off to the IAO (or IASO).
Which are the DIACAP team members?
According to DODI 8500.2, the "DIACAP team members" are defined as: E2.25. DIACAP Team. Comprised of the individuals responsible for implementing the DIACAP for a specific DoD IS. At a minimum the DIACAP Team includes the DAA, the CA, the DoD IS program manager (PM) or system manager (SM), the DoD IS IA manager (IAM), IA officer (IAO), and a user representative (UR) or their representatives.
DIACAP requires you to review your IA posture every?
According to DoD 8510.01 (DIACAP), paragraph 5.16.8, the Program Manager (PM) or System Manager (SM) shall:"Ensure annual reviews of assigned ISs required by FISMA are conducted."So reviews must occur at least once a year.
What are the three confidentiality levels CL which are used in the DIACAP?
Three confidentiality levels are used in DIACAP: Public Sensitive Classified
