U.S. International Traffic in Arms Regulation (ITAR) and Export Administration Regulation (EAR) consulting, strategy and advisory services and solutions for defense contractors seeking expert assistance with information security, cybersecurity, data privacy, and compliance needs.
ITAR & EAR Advisory and Consulting | U.S. International Traffic in Arms Regulation (ITAR) or the similar Export Administration Regulation (EAR)
Arlington is a leading provider of U.S. International Traffic in Arms Regulation (ITAR) and Export Administration Regulation (EAR) for defense contractors all throughout North America. Our ITAR & EAR Scoping & Gap Assessments are a critical first step for assisting organizations working with export-controlled products and services.
Arlington is a leading provider of U.S. International Traffic in Arms Regulation (ITAR) and Export Administration Regulation (EAR) for defense contractors all throughout North America. Our ITAR & EAR Scoping & Gap Assessments are a critical first step for assisting organizations working with export-controlled products and services.
You produce, maintain, and/or export items on the United States Munitions List (USML).
You provide defense articles and services.
You produce items or “know-how” that is listed on the Commerce Control List (CCL).
You provide IT or cloud services to prime contractors or federal agencies that store, process, or transmit export-controlled data using your services.
And while both ITAR and EAR do not specifically spell out a prescriptive set of information security and cybersecurity requirements, such controls are absolutely essential for developing, implementing - and maintaining - an effective export compliance program.
Copy the below URL to share the page content.
Arlington Security Portal
Get Access to 100 + NIST RMF security and privacy policies & procedures, programs, and plan templates.
A critical element for ITAR and EAR success is identifying all compliance gaps within the actual U.S. International Traffic in Arms Regulation (ITAR) and Export Administration Regulation (EAR) regulations. You need a proven, trusted professional with years of ITAR and EAR experience for DoD contractors, and that’s Arlington.
Remediation
Arlington’s remediation services for ITAR and EAR are comprehensive, offering a wide-range of services for ensuring compliance is met. Remediation services include policy and procedures writing, plan and program documentation creation, tabletop exercises, security awareness training, and much more. Both ITAR and EAR have a long list of security and operational measures for which organizations must adhere, and if there’s gaps, they must be corrected.
ITAR and EAR Policy Writing
One of the most demanding, time consuming, and tedious aspects of developing an export compliance program is developing large amounts of policies, procedures, programs, and plans. Bottom line - both ITAR and EAR require a healthy list of documentation to be in place. From Human Resources policies to information security, cybersecurity, and operational documents - and much more - Arlington has years of experience developing all required material for both ITAR and EAR.
Independent Assessments
If necessary, Arlington offers independent assessments for helping organizations validate and showcase compliance with both ITAR and EAR. Many times, prospective and current clients - and federal agencies (State Department, DoD, etc.) are seeking assurances that your organization is ITAR and EAR compliant. Our assessment expertise allows us to perform an objective, unbiased, yet efficient audit report for issuance to third-parties as necessary.
Continuous Monitoring
Arlington also offers continuous monitoring services for ensuring organizations stay compliant with ITAR and EAR. We adhere to the concept of continuous monitoring as defined by the National Institute of Standards and Technology, NIST, for which “...Information security continuous monitoring (ISCM) is defined as maintaining ongoing awareness of information security, vulnerabilities, and threats to support organizational risk management decisions.”
