Cybersecurity Compliance Validations

Definition
Cybersecurity Compliance Validations (CCV) assessments

"are conducted collaboratively with an agency and incorporate data collection and analysis, staff interviews, and direct observation to measure and validate federal agency progress implementing capabilities and meeting requirements stemming from the Comprehensive National Cybersecurity Initiative (CNCI), the Trusted Internet Connections (TIC) Initiative, FISMA, and Office of Management and Budget guidance and, optionally, to assess Network Operations Center (NOC)/Security Operations Center (SOC) maturity. CCV assessments utilize an objective, repeatable, and consistent methodology to ensure fairness and facilitate federal-wide trending and analysis."