U.S. flag   An official website of the United States government
Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Https

Secure .gov websites use HTTPS
A lock (Dot gov) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.

National Checklist Program

National Checklist Program

NCP

  1. Checklist Repository

Soaring Software Solutions TCMax 9.x STIG Ver 1, Rel 1 Checklist Details (Checklist Revisions)

Supporting Resources:

Target:

Target CPE Name
Soaring Software Solutions TCMax 9.x cpe:/a:soaringsoftware:tcmax:9.x (View CVEs)

Checklist Highlights

Checklist Name:
Soaring Software Solutions TCMax 9.x STIG
Checklist ID:
1327
Version:
Ver 1, Rel 1
Type:
Compliance
Review Status:
Candidate
Authority:
Governmental Authority: Defense Information Systems Agency
Original Publication Date:
03/20/2026

Checklist Summary:

TCMax is an electronic inventory management system that leverages data for accountability across physical assets, digital assets, and personnel. There are more than 10 accountability concepts that work together, including inventory control, status management, inspections and calibrations, user training and certifications, various inventory modes, and more. More than 125 reports and notifications allow users to identify areas of attention, forecast events, and budget successfully.

Checklist Role:

  • Database Management System

Known Issues:

Not provided.

Target Audience:

Parties within the DOD and federal governments computing environments can obtain the applicable STIG from the DOD Cyber Exchange website at https://cyber.mil/. This site contains the latest copies of STIGs, SRGs, and other related security information. Those without a Common Access Card (CAC) that has DOD Certificates can obtain the STIG from https://public.cyber.mil/

Target Operational Environment:

  • Managed
  • Specialized Security-Limited Functionality (SSLF)

Testing Information:

Not provided.

Regulatory Compliance:

This document is provided under the authority of DODI 8500.01.

Comments/Warnings/Miscellaneous:

The Soaring Software Solutions TCMax 9.x Security Technical Implementation Guide (STIG) is published as a tool to improve the security of Department of Defense (DOD) information systems. This document is meant to be used in conjunction with the Windows OS STIG, Microsoft SQL Server STIG, and other STIGs as applicable to the host environment. It is based on the Application Security Requirements Guide (SRG), which in turn derives its cybersecurity controls from National Institute of Standards and Technology (NIST) Special Publication (SP) 800-53, Revision 5.

Disclaimer:

Not provided.

Product Support:

Not provided.

Point of Contact:

[email protected]

Sponsor:

Not provided.

Licensing:

Not provided.

Change History: 



					

						Dependency/Requirements:
					

					

						
							

								URL
								Description
							

						
						
							
						
					


					

						References:
					


					

						
							

								Reference URL
								Description
							

						
						
							
						
					


					

						NIST checklist record last modified on 03/20/2026
					

					   

							

							* This checklist is still undergoing review for inclusion into the NCP.