What does DCSA expect to be in place for an Incident Response Plan (IRP) for eMASS reporting?

An Incident Response Plan (IRP) is one of the most fundamentally important documents to have in place, and DCSA will want to thoroughly review your IRP. With that said, you’ll need to have in place a company-wide approved IRP, one that includes required DoD guidelines, and that covers the in-scope information system. If you do not have an IRP in place, or, if your company-wide IRP does not include coverage for the in-scope Information system, DCSA recommends (and more realistically, “expects”), cleared contractors to follow the DAAPM Appendix Q for IRP. Additionally, your IRP should contain specific measures relating to Spills (Appendix R) and Sanitization (Appendix S).

Per a recent presentation by DCSA personnel,

• “IRPs are approved in conjunction with the Information System unless a separate one was submitted and approved at the corporate level.”
• “Do your processes involve remote cleanup with remote workers? Remote aspects of your cleanup should be clear in the submitted IRP.”
• “DCSA expects cleanup to follow DAAPM guidance at a minimum as documented in your IRP.”

From Beginning to End, Complete Project Management for NIST RMF A&A within eMASS

With Arlington, we can manage your entire NIST RMF A&A process within eMASS from beginning to end (i.e., from the initial NIST RMF eMASS scoping & gap assessment to post-Authorization to Operate (ATO) activities), providing essential services for getting you to the finish line in terms of your ATO.  Core services and solutions offered include the following:

• Scoping & Gap (i.e., Readiness) Assessments
• Remediation Services (Policy and Procedures writing)
• Remediation Services (Technical and Operational)
• System Security Plan (SSP) Development
• Completion of eMASS Export Control Spreadsheets
• Continuous Monitoring (ConMon) Services