NMD
Software Assurance

Telos in Action: Application Software Assurance Center of Excellence (ASACoE)

The U.S. Air Force asked Telos to establish the Application Software Assurance Center of Excellence (ASACoE) at Maxwell AFB-Gunter Annex in Montgomery, Alabama.

The Telos-led contractor team provides tools, training and services to assist the center in establishing application security best practices Air Force-wide, fostering security throughout the software development and maintenance life cycles, and identifying and mitigating existing vulnerabilities.

The center has conducted software assurance assessments on over 1,000 applications, discovering and mitigating numerous exploitable vulnerabilities. In recognition of the advances made by the center in securing Air Force applications, the ASACoE was selected to represent AFMC for the 2010 Air Force Chief of Staff Team Excellence Award.

Application Software Assurance


Network and perimeter security alone are insufficient for defending IT systems and data.  Software and application security needs to be built in from the start in order to protect the IT infrastructure and to reduce overall risk from cyber attacks.

Our elite corps of software security assurance personnel provides the foundation for secure, vulnerability-free applications.  They apply a rigorous yet flexible regimen of tools and processes for testing and validating existing applications and ensuring the secure development and operation of new software by building security into the software development lifecycle (SDLC).

Software security assurance solutions and services we offer include:
  • Standards and policies development
  • Security architecture reviews
  • Coding best practices
  • Source code analysis
  • Threat modeling
  • Vulnerability and penetration testing
  • Documentation of best practices
  • Application shielding
  • Database monitoring
  • Remediation of legacy systems
  • Implementation services
  • Post-implementation maintenance
  • Training and education
  • Regulatory compliance

You benefit from proven approaches to software and application security through our use of established software assurance models and frameworks such as the Software Assurance Maturity Model (SAMM), BSIMM3 Scorecard, and Capability Maturity Model Integration (CMMI). You also benefit from efficiencies gained through best-of-breed tools that streamline and automate tasks during software development, testing, and operation.  

Telos software security assurance personnel have experience working with a broad range of custom-developed, COTS/GOTS, and open source applications.  We’re familiar with the software and application security challenges presented by today’s IT platforms and environments, including cloud-based offerings and mobile applications.  We have the people, tools and methodologies needed to build security into your software development and procurement processes.