Develop an Information Assurance (IA) Test Plan for each release.
Provide an Information Assurance (IA) Test Reports Initiate protective or corrective measures when an IA incident or vulnerability is discovered.
Ensure that IA and IA-enabled software, hardware, and firmware comply with appropriate security configuration guidelines.
Provide support ensuring the records are up to date.
The ISSO shall be responsible for updating the DoD Artifacts (DoD Architecture Framework Documentation).
Ensure that DoD information system recovery processes are monitored and that IA features and procedures are properly restored. Ensure that all DoD information system IA-related documentation is current and accessible to properly authorized individuals. Implement and enforce all DoD information system IA policies and procedures, as defined by its security certification and accreditation documentation.
Generate Vulnerability Scan Compliance (VSC) Report as necessary. Record Plan of Action and Milestones (POA&M) entries into eMASS or STIG Viewer.
(Access will be provided to eMASS) Record Risk Acceptance (DRA) entries into eMASS or STIG Viewer Update findings to proper status (Fixed, Open, Not a Finding, etc.) within eMASS or STIGViewer.
For More Info. Go To: http://bit.ly/2St8fca