The HPE Fortify on Demand (FoD) for US Public Sector performs security assessments of application code and web site/web services testing without any software to install or manage. Static Code Scanning of code such as Java, .NET, and other major programming languages for security defects are performed in the FoD System at the code layer followed by an audit review by an HPE Static auditor. Dynamic Web Site and Web Services testing use HPE’s WebInspect software as the scan engine, followed by a review from an HPE Dynamic tester.
Privacy Threshold Analysis (PTA)
Privacy Impact Assessment (PIA)
System of Records Notice (SORN)
FedRAMP (JAB) (link)
FedRAMP (CSP Package)