Security Software

ManTech's security/software engineering services provides U.S. government and military agencies with network security, stand-alone systems security, and software/hardware security at Washington Metro, CONUS, and OCONUS locations. Specifically, ManTech has developed, installed, integrated and implemented security services and systems engineering for Windows NT, UNIX, Macintosh and Novell network operating systems; digital signatures and public key technology; privacy enhanced e-mail; trusted systems certification and accreditation; and Internet/ Intranet firewalls. Those services have been provided for a range of systems from laptops to small and large network systems.

We integrate enabling technologies that provide key capabilities - confidentiality, integrity, availability, and accountability - that allow an enterprise to satisfy critical business needs. Today's information systems provide greater access than ever to a multitude of information resources. But this broad connectivity also has a darker side - these same systems are subject to many threats that jeopardize the privacy and confidentiality of sensitive information, the integrity of data, and the availability of critical information system resources. Fortunately, information security technology has matured to the point where technology solutions and engineering approaches are available. Today's challenge is to strike the right balance between new technology opportunities and the risks of implementing these technologies. ManTech strikes this balance by taking an enterprise-wide view of security. We provide services in all areas relevant to information systems security analysis and technology solutions.

Secure Solutions Integration Our staff understands the multitude of threats to which a system is vulnerable and is well versed in security technologies, including firewall engineering, secure dial-in, unitary login, digital signature and public key encryption, trusted products, and anti-viral software. We conduct marketing trade-off analyses between a system's requirements and commercial products' ability to meet those requirements. We apply our knowledge and tools to integrate information security "point solutions" (both commercial and custom) into existing information system environments. Our expertise in this area extends to Firewalls (Gauntlet, Raptor, V-One, WatchGuard), Network Encryption Systems and Crypto (KG, KY, KIV, STU, TACLANE, FASTLANE) devices.

Firewalls
ManTech continues to examine commercial and publicly available firewall products and has implemented firewalls in various customer environments. ManTech's activities include firewall security policy and requirements development, firewall risk assessment, firewall security and performance testing, firewall product integration, and firewall administrator and user training. ManTech continues to monitor and apply emerging firewall technologies, especially those that provide firewall transparency (e.g., transparent proxies/forwarders and transparent challenge/response dialogues), firewall-to-firewall encryption (virtual private networking), packet-level authentication, strong user authentication, and tools which can assist with firewall administration and secure posture monitoring.

Internet Security
ManTech analyzes the functional and security aspects of the available internet security products and has implemented solutions based on the Secure Hypertext Protocol, Secure Socket Layer protocol, and Kerberos (a distributed authentication system). Our attention is focused on the product's security features and the ease with which they can be applied to an enterprise environment. ManTech understands how these products can be applied to commercial and government information systems.

Trusted Product Evaluation
ManTech provides technical expertise in the evaluation of operating systems, Windows system technology, database management systems, and network components. These products are evaluated against the Trusted Computer Security Evaluation Criteria (TCSEC) and its interpretations (commonly referred to as the "Orange Book" and the "Rainbow Series").

Security Strategic Planning
Security must be part of any technology solution, and must be integrated at the start of any technology product. However, security is no exception to the need to do things smarter, faster, and cheaper in today's budget-tightening environment. In providing system security guidance to our customers, ManTech analyzes and develops security requirements for systems in the context of customer goals with an emphasis on managing risk, not eliminating it. We develop practical security solutions, including security architectures, policies, and product integration. ManTech provides life-cycle support from concept formulation through system development, fielding, and operation.

ManTech also believes that technology is not the only answer to providing effective information security, user awareness, countermeasures, and standard practices and procedures are necessary to ensure a controlled environment. Our security professionals work with customers who have a corporate commitment to security and need to plan for and integrate security into their information systems.

Windows NT Security
Our security engineers have been involved in developing, implementing, and maintaining security policies and performing analysis of Windows NT networks, both globally and nationally. ManTech engineers have provided a trusted computing base for Windows NT networks, their users, the data and databases which reside on the enterprise network system. We have assured government security administrators that the system integrity was implemented and maintained throughout with stringent auditing policies.

ManTech has provided the system planning and support needed to establish, develop and implement integrated security for the life cycle security of programs/projects. This expertise has supported meeting DoD security requirements for the certification and accreditation of networked computer systems. ManTech has significant experience providing program security management; security studies; security policy reviews and analysis; security procedures documentation, review, and implementation; AIS standard practices procedures (AISSPP) development, review, and implementation. ManTech has conducted risk, vulnerability, and threat assessments of mainframe and network-based computers.

For more information, go to: ManTech Information Systems and Technology

Contact ManTech to obtain our solutions, services or products

Search Careers