atsec accredited as a NASPO Third-Party Auditor
Austin, TX, June 15, 2011–atsec information security is pleased to announce its accreditation as a third-party auditor for the North American Security Products Organization (NASPO). In this role atsec will conduct audits required to attain certification under the ANSI/NASPO-SA-2008 standard and has completed the necessary training from NASPO.
NASPO was founded in 2002 by companies and individuals in the security products industry that recognized the need for the control of secure products and technologies. To provide a recognized framework, NASPO developed an authoritative set of standards and auditing practices focused on the principle of control using the concept of risk management as an accredited ANSI standards development organization. NASPO is also contributing to the development of national standards for national identity proofing and verification.
Fiona Pattinson, Director of Business Development & Strategy for atsec, commented: “We are looking forward to bringing atsec’s longstanding experience of performing security audits and assessments under a variety of U.S. and international IT security standards such as the FISMA risk management framework, PCI DSS and ISO/IEC 27001 to bear under the NASPO scheme. The addition of this service to atsec’s portfolio supports our customers who need to provide security assurance to their stakeholders by demonstrating compliance with important security standards. This service complements our existing offerings to customers in the security document supply chain that include product compliance to standards such as FIPS 201, FIPS 140-2 and Common Criteria.”
About atsec information security
atsec information security corporation is a U.S. Government accredited laboratory, based in Texas, which tests information assurance (IA) and IA-enabled commercial off the shelf (COTS) information technology.
Combining all of our technology security experience and expertise, atsec
information security corporation additionally provides strong consulting skills for: network penetration testing; embedded systems and hardware security testing and analysis; the Federal Information Security Management Act (FISMA); Information Systems Security Management Systems (ISMS); and independent security assessments based on your individual needs.
atsec also operates Government accredited laboratories in Germany and Sweden.
NASPO is an ANSI-accredited standards development organization based in Washington, DC. Its members include commercial, industrial, government and private organizations. NASPO maintains the ANSI/NASPO Security Assurance standard (ANSI/NASPO-SA-2008) and certifies organizations to one of three levels of security assurance. On behalf of ANSI, NASPO acts as secretariat of the International Organization for Standardization Technical Committee on Fraud Countermeasures and Controls (ISO/TC 247). NASPO also administers the ANSI-accredited United States Technical Advisory Group to ISO/TC 247 and ISO/PC 246, Anti-counterfeiting tools. For more information on NASPO, please visit their website, http://www.naspo.info.