TWM Associates, Inc. (TWM) is a firm that
specializes in Cybersecurity, IT Audit, FISMA,
CMMC Support, and Information Assurance (IA) and has
contirbuted to the evolution of IA within the Federal
Government and the Department of Defense (DoD).

Our participation with DoD has evolved from contributions to the original Defense Information Technology Security Certification
and Accreditation Process (DITSCAP) to DIACAP and Now Risk Management Framework (RMF).

In 2007, DITSCAP was replaced with DIACAP, Defense Information Assurance Certification & Accreditation Process. DIACAP was much more enterprise-centric and also drew from the DoD 8500.2 standard control set. The paperwork requirements were streamlined, but one major problem still remained. While the DoD used DIACAP, the rest of the Federal Government and the Intelligence Community used FISMA and the A&A processes based on NIST 800-53 control sets, making interconnectivity between these systems virtually impossible without a lengthy discovery and translation process.

Late in 2013 DoD moved to over the Risk Managment Framework (RMF). TWM has completed hundreds of systems transitions from the DIACAP to the RMF process.

Security is our main core competence for over 25 years. TWM has taken a holistic approach to security that involves not only technology, but also the people, business processes and the facilities to elevate the security posture of an organization through accreditation. This commitment to excellence and quality is reflected in TWM achieving our ISO 9001 and ISO 27001 accreditation.