As part of the NAVAIR RMF Center of Excellence (CoE), SMX provides Information System Security Officers/Engineers (ISSO/E) and Validator support to programs at risk of losing authorization within the NAVAIR IS portfolio. This team of specialists surge to under-resourced and at-risk programs to provide full spectrum RMF support, including categorization, implementation, and assessment—more than 70 programs in total since the RMF CoE was established in 2019. Our support has resulted in dozens of programs avoiding de-authorization and a higher level of cyber security rigor being applied throughout the NAVAIR portfolio.
Additionally, SMX maintains a team of skilled and experienced Navy Qualified Validators (NQVs) to support all NAVAIR clients. This cadre of validators specialize in conducting vulnerability assessment on Navy Information Systems (IS), utilizing Defense Information Service Agency (DISA) tools such as Secure Compliance Automation Protocol (SCAP), Security Technical Implementation Guides (STIGs), and the Assured Compliance Assessment Solution (ACAS) to ascertain the level of risk resident on an IS.