spk-logo-white-text-short2
0%
1-888-310-4540 (main) / 1-888-707-6150 (support) info@spkaa.com
Select Page

How to Conduct System Hardening Using the Defense Information Systems Agency’s (DISA) “Gold Disk”

Written by SPK Blog Post
Published on December 6, 2011

Holes in your IT infrastructure can make for some awkward situations. Whether you’re dealing with sensitive customer information, upcoming product designs, or simply just don’t want people messing with your stuff, maintaining system integrity can be difficult. Symantec is great, but what do you do when the integrity of your system directly relates to national security? Where do you turn when the boss says you gotta keep those centrifuges spinning or heads will roll?

The DoD has developed a process, called DIACAP, for certifying that an Information System (IS) is compliant with DoD security standards. DIACAP stands for DoD Information Assurance Certification and Accreditation Process and you can find additional information about it here and here.

The DISA (an agency within the DoD) has developed a tool, called “Gold Disk”, to help identify and mitigate security holes according to DIACAP standards. It scans your machine and produces a detailed outline of all the Category 1, 2, and 3 vulnerabilities it finds, depending on the applicable Mission Assurance Level. It even goes as far as to suggest the appropriate means of resolving the issue, point out relevant Microsoft Security Bulletins, and offer to fix things for you.

Keep reading for my step-by-step walk-through on how to use DISA’s “Gold Disk”, a handy tool!

David Hubbell
SPK Software Engineer

Latest White Papers

4 Strategies for Securing Container Deployments

4 Strategies for Securing Container Deployments

Utilizing containers can have many benefits for organizations in the IT realm. However, some teams experience pushback to adopting this technology due to security concerns. Let’s explore ways to ensure secure container deployments for your teams. What You Will Learn...

Related Resources

You Don’t Need a Gantt Chart for Agile, You need Clear Path

You Don’t Need a Gantt Chart for Agile, You need Clear Path

Introduction Hi everyone, welcome to SPK Associates' video here today. This video is entitled, "You Don't Need a Gantt Chart for Agile, You Need a Clear Path." My name is Michael Roberts, Vice President of Sales and Marketing at SPK Associates, and I'm here today with...

Navigating the High Costs of Product Launch Delays

Navigating the High Costs of Product Launch Delays

Delaying a product launch can have significant financial repercussions that extend far beyond the immediate costs.  It is important to understand how these delays can impact an organization. Having this knowledge can transform an organization’s strategic plans and...

4 Strategies for Securing Container Deployments

4 Strategies for Securing Container Deployments

Utilizing containers can have many benefits for organizations in the IT realm. However, some teams experience pushback to adopting this technology due to security concerns. Let’s explore ways to ensure secure container deployments for your teams. What You Will Learn...