Northrop Grumman aligning with identity management systems

To address growing cyber threats effectively, federal contractors should deploy stronger identity management solutions that are interoperable or at least compatible with federal employee identification systems, a senior executive with Northrop Grumman Corp. advises.

Northrop Grumman is preparing to issue its new OneBadge identification cards to thousands of its aerospace and defense employees. Its design is compatible with the federal standards for Personal Identity Verification cards.

The company expects to be one of the first federal contractors to use a centralized public-key infrastructure as part of its identity management program, according to Keith Ward, director of enterprise security and identity management at Northrop Grumman.

The company’s entire federated identity management solution is aligned with Defense Department and with federal identity management policies, Ward said.

Northrop Grumman is “strengthening authentication across the enterprise with smart cards,” Ward told the Smart Card Alliance conference Oct. 23.

Northrop is participating in Certipath LLC, an entity created by several defense contracting firms that is cross-certified by the Federal Bridge Certification Authority. Certipath became eligible this summer to participate in DOD's iidentity assurance, after DOD officials announced a policy change to begin accepting digital certificates from external organizations. Certipath is expected to be the first external organization accepted by the department under that memo.

Defense contractors must address new concerns about cyber threats that may affect their global supply chain.

At any given time, in the aerospace and defense global supply chain, approximately 300,000 supplier companies are working on U.S. government contracts around the world, representing roughly 3 million to 4 million individuals, Ward said.

“Aerospace and defense companies are responsible for vetting and supplying them with strong and secure credentials for access of intellectual property within the commercial space,” Ward said.

“Aerospace and defense companies must balance the need to protect intellectual property while demonstrating willingness and ability to meet contractual requirements from government customers for auditable, identity-based, secure flows of information,” he said.

About the Author

Alice Lipowicz is a staff writer covering government 2.0, homeland security and other IT policies for Federal Computer Week.

Featured

  • Telecommunications
    Stock photo ID: 658810513 By asharkyu

    GSA extends EIS deadline to 2023

    Agencies are getting up to three more years on existing telecom contracts before having to shift to the $50 billion Enterprise Infrastructure Solutions vehicle.

  • Workforce
    Shutterstock image ID: 569172169 By Zenzen

    OMB looks to retrain feds to fill cyber needs

    The federal government is taking steps to fill high-demand, skills-gap positions in tech by retraining employees already working within agencies without a cyber or IT background.

  • Acquisition
    GSA Headquarters (Photo by Rena Schild/Shutterstock)

    GSA to consolidate multiple award schedules

    The General Services Administration plans to consolidate dozens of its buying schedules across product areas including IT and services to reduce duplication.

Stay Connected

FCW Update

Sign up for our newsletter.

I agree to this site's Privacy Policy.