The DoD Information Assurance Certification and Accreditation Process (DIACAP) is the Department of Defense (DoD) process to ensure that risk management is applied on Information Systems (IS). DoDI lays down the foundation of definitions and controls for Information Assurance (IA) across DoD. DIACAP is the result of a NSA directed shift in underlying security paradigm and succeeds its predecessor: DITSCAP.
DIACAP embraces of the idea of information assurance controls (defined in DoDI 8500.2) as the primary set of security requirements for all automated information systems (AISs). The IA Controls are determined based on the system’s mission assurance category (MAC) and confidentiality level (CL).
EventTracker believes that it is crucial to monitor for compliance in a manner as close to real-time as possible.
See a complete DoDI 8500.2 Solution Brief