Member Since: 2000
9140 Guilford Road, Suite N
Columbia, Maryland 21046
Business Development Manager:
COACT, Inc is a Service Disabled Veteran Owned Small Business (SDVOSB) and an accredited FedRAMP Third Party Assessment Organization (3PAO). For over 25 years, COACT has provided consulting, Independent Verification and Validation (IV&V), and assessment services to both government and commercial clients to guide them in understanding and fulfilling their risk management and compliance needs.
Our subject matter experts have supported many organizations of different sizes, develop and implement a successful information security program to help protect against cyber threats; this includes policies and procedures, awareness and training, product certifications, vulnerability assessments and comprehensive information assurance including documentation development and continuous monitoring.
COACT's Cybersecurity Analysts provide consistent and high-quality services in support of commercial and government clients in understanding and fulfilling their risk management and compliance needs. The frameworks and compliance programs that our services can address include: FedRAMP, FISMA, Controlled Unclassified Information (CUI) compliance (DFARS/FAR requirements using NIST SP 800 171), HIPAA compliance, and Limited Access Death Master File (LADMF) Compliance.
COACT tiered service offerings range from focused efforts to address specific security and compliance objectives to providing full information security programs for clients in commercial, healthcare, defense, and intelligence domains.
The COACT Lab is an independent test facility that performs FIPS 140-2 validations and SCAP 1.3 testing. COACT has successfully completed FIPS 140-2 validations on a wide range of technologies as a Third Party independent testing facility accredited by the National Voluntary Laboratory Accreditation Program (NVLAP Lab Code 200416-0). The COACT Lab offers vendors a full service approach to meet all the vendor's testing needs including pre-validation consulting, documentation development and testing and validation assistance. Our goal is to assist you in getting your Cryptographic Module FIPS 140-2 validated and listed on the Cryptographic Module Validation Program (CMVP) Validated Modules list. We work with you through the entire process and keep you informed every step of the way. You know your product. We know the standard.
COACT's SA&A consultants have proven expertise in helping U.S. federal agencies comply with FISMA and improve their security posture. Whether your agency requires assistance in setting up an SA&A program, enhancing the program you have already established, certifying new information systems, or validating new SA&A packages, COACT has a long history of supporting the mission of all types of agencies and organizations while satisfactorily meeting their compliance needs.
COACT is an Accredited FedRAMP 3PAO and is authorized to perform security assessments for cloud service providers (CSP) seeking FedRAMP Provisional Authorization.As part of our FedRAMP preparation service, we help organizations understand what FedRAMP entails for Cloud based information system(s) and how to define the accreditation boundaries. Our experienced FedRAMP consultants have proven expertise in assisting companies in improving their overall security posture and in developing compliant documentation.
COACT has multiple years of experience providing cyber security services to the Department of Defense (DoD), Intelligence community, Federal civilian Agencies, and commercial organizations to include United States Department of Agriculture (USDA), Internal Revenue Service (IRS), Missile Defense Agency (MDA), Department of the Navy, Office of the Comptroller of the Currency.
Access to Contract Vehicles:
Seaport Next Generation
DHS Eagle II
Federal Aviation Administration (FAA) Accelerated and Simplified Tasks (eFAST) BPA
NSA NSETS II
COACT is International Organization for Standardization (ISO) 9001:2015 and ISO/International Electrotechnical Commission (IEC) 17020:2012 compliant and utilizes a Quality Management System (QMS) accredited by the American Association for Laboratory Accreditation (A2LA) to provide consistent and high-quality services.