Risk management framework

Defense Health Agency (DHA) Issues New Authority to Operate (ATO) to Software AG Government Solutions

Retrieved on: 
Thursday, January 19, 2023
COVID-19, Government, IOT, Risk, Department of Defense Cyber Crime Center, Organization, Risk management framework, Federation, Software, Contact tracing, United States Department of Defense, RMF, Department of Defence, Defense

RESTON, Va., Jan. 19, 2023 /PRNewswire-PRWeb/ -- Software AG Government Solutions announced today that its self-service Cumulocity IoT platform was granted a Defense Health Agency (DHA) Authority to Operate (ATO).

Key Points: 
  • It validates how the Cumulocity IoT platform can meet current and emerging needs for IoT data management from any sensor or device across the US Federal government.
  • "All federal agencies are poised to fully take advantage of IoT in ways that gain faster results for true mission enablement," said Hank Bailey, President and Chairman of the Board of Software AG Government Solutions.
  • "This ATO demonstrates that our Cumulocity IoT platform is secure and scalable to meet the unique challenges required for the Department of Defense and other government agencies."
  • The Cumulocity IoT platform supports the capture, analysis, and visualization of data to comply with all government cyber, operational security, and PII/PHI protection requirements.

COALFIRE FEDERAL EXPANDS NIH PARTNERSHIP WITH NHLBI CYBER AWARD

Retrieved on: 
Tuesday, December 13, 2022
NIH, FedRAMP, Heart, Lung, Risk management framework, Partnership, Hematology, Research, Risk management, RMF, Government, National Heart, Lung, and Blood Institute, BPA, CMMC, NHLBI, Degenerative disease, Health, Federal, Pharmaceutical industry, Medical device

WASHINGTON, Dec. 13, 2022 /PRNewswire/ -- In 2021, Coalfire Federal was one of six firms chosen to provide cybersecurity strategy, risk management, and assessment services to the National Institutes of Health (NIH). Under the terms of the potential five-year, $86 million NIH OCIO (Office of the Chief Information Officer) RMF (Risk Management Framework) BPA (Blank Purchasing Agreement), the Virginia-based company will provide cybersecurity risk management and authority to operate (ATO) services across the NIH's 27 institutes and centers through 2026. 

Key Points: 
  • This latest cybersecurity services award to Coalfire Federal will enable NHLBI to maintain operational readiness and accelerate its mission.
  • "As a relative newcomer directly supporting NIH, Coalfire Federal was chosen by NHLBI over incumbent NIH contractors which we attribute to our pure-play cyber expertise and capabilities, government and commercial experience, and national ability to protect federal systems and supply chains."
  • We look forward to a long and successful partnership with NHLBI and NIH."
  • To learn more about Coalfire Federal and how it can help your organization protect the mission, contact us at [email protected] or visit coalfirefederal.com .

U.S. Army 7th Signal Command Awards Empower AI $11 Million IT Services and Cybersecurity Contract

Retrieved on: 
Wednesday, November 2, 2022
Other Defense, Contracts, Data Management, Technology, White House, Federal Government, Defense, Artificial Intelligence, Security, Homeland Security, Government Technology, Other Technology, Military, Public Policy, Government, 7th Signal Command (United States), CEO, Slave & Otis, Risk management, Government, Workforce, 311th Signal Command (United States), Artificial intelligence, Army, Risk management framework, Information system, Medical device, Health, Defense

Empower AI (formerly NCI Information Systems), a leading provider of artificial intelligence and other technologies to U.S. government agencies, today announced that it has won a recompete contract to support the 7th Signal Command (Theater).

Key Points: 
  • Empower AI (formerly NCI Information Systems), a leading provider of artificial intelligence and other technologies to U.S. government agencies, today announced that it has won a recompete contract to support the 7th Signal Command (Theater).
  • Under the contract, Empower AI will provide IT services and support to the Security Control Assessor to the 7th Signal Command (Theater), including Risk Management Framework validation testing to ensure the highest-level security posture for all systems and networks.
  • Ensuring and validating the strongest cybersecurity posture for the Army and Joint Force is a critical mission initiative, and we are pleased to continue our long-term support for the Army and the 7th Signal Command in this effort, said Paul Dillahay, president and CEO of Empower AI.
  • Headquartered in Reston, Va. Empower AI leverages three decades of mission experience solving complex challenges in Health, Defense, and Civilian missions.

Cubic Awarded DoDIN APL Certification for M3-SE and M3X Rugged Servers

Retrieved on: 
Wednesday, June 8, 2022
Software, Networks, Defense, Other Defense, Hardware, Contracts, Technology, Security, Corporation, SSD, Xeon, Virtual server, IP67, Transport, Ownership, RMF, Risk management framework, Cubic Corporation, APL, Integration, Dodin, DDR4, RAM, CMPS, Intel, M3X, C4ISR, Aviation Performance Solutions, Twitter, Department, Certification, United States Department of Defense, 128, VSAN, JITC, VMware, Safety, Online shopping, Internet service provider, Video game console, Cubic

Cubic Corporation today announced that its Cubic Mission and Performance (CMPS) division has successfully obtained Department of Defense, Information Network Approved Product List (DoDIN APL) certification for M3-SE and M3X Rugged Servers, bringing its certified modules to five: M3-SE4, M3-SE-SVR4, M3-PM-SVR4, M3-SE-APP4, M3X-APP.

Key Points: 
  • Cubic Corporation today announced that its Cubic Mission and Performance (CMPS) division has successfully obtained Department of Defense, Information Network Approved Product List (DoDIN APL) certification for M3-SE and M3X Rugged Servers, bringing its certified modules to five: M3-SE4, M3-SE-SVR4, M3-PM-SVR4, M3-SE-APP4, M3X-APP.
  • The DoDIN APL, formally JITC APL, represents the agency's master list of products available for purchase that are secure, trusted and approved for deployment within the DoD's technology infrastructure.
  • The servers have been designed to meet growing mission requirements with performance usually only available with larger 19-inch rack servers.
  • The modular, stackable M3-SE and M3X servers allow users to upgrade their current M3-SE or M3X server and network deployments with minimal changes to system design.

ScImage Successfully Completes Its Soc 2 Type 1 Report to Enhance Data Security

Retrieved on: 
Wednesday, May 25, 2022
Cloud, CEO, DHA, EHR, Cardiology, VPN, American Institute of Certified Public Accountants, Doctor of Philosophy, Environment, American Institute, Women's health, SOC, CPAS, AICPA, Risk management framework, HITRUST, SOC 2, GDPR, PCI-DSS, Defense, Compliance, FDA, Defense Health Agency, CSA, CCPA, PACS, Federal Food, Drug, and Cosmetic Act, Certified Public Accountant, RMF, Better Business Bureau, National Association of State Boards of Accountancy, SOC 1, Amazon Web Services, Penetration test, Confidentiality, Louisiana State Board of Private Security Examiners, ATO, ISO 27001, CMMC, Authority, ISO, LOS, Microsoft Azure, Audit, Video game console, Medical device, Radiology, Orthopedic surgery, Ophthalmology, Computer security, Google

LOS ALTOS, Calif., May 25, 2022 /PRNewswire-PRWeb/ -- ScImage, Inc., a leading provider of cloud-centric enterprise imaging, PACS, and image exchange solutions for the healthcare industry, announced today it has successfully completed its SOC 2 Type 1 report, in accordance with attestation standards established by the American Institute of Certified Public Accountants (AICPA). The achievements underscore ScImage's commitment to strong internal controls.

Key Points: 
  • "SOC 2 Type 1 report for PICOM365 Cloud Enterprise Imaging Services system allows ScImage to demonstrate that we are successfully merging the wealth of security and monitoring features built into the MS Azure platform with our own specific controls and information security wisdom acquired over decades of experience.
  • ScImage is fully committed to the principles of security, confidentiality, and availability," he said.
  • Dr. Raya noted that ScImage has been seeing an increase in the number of security documentation requests as the healthcare industry transitions from on-premise to Cloud-based workflow.
  • Services provided include SOC 1, SOC 2, SOC 3, SOC for Cybersecurity, CSA STAR, HIPAA/HITECH, ISO 27001, CMMC, PCI-DSS, HITRUST CSF, Microsoft SSPA Attestation, Penetration Testing, GDPR, CCPA and more.

A1PlusSoft Announces Strategic Partnership with eFortresses

Retrieved on: 
Monday, May 23, 2022
Education, AI, SRS, Vulnerability assessment, HVA, Risk, Leadership, Government, Risk management framework, Workflow, Privacy, CISA, RVA, Minority business enterprise, SAR, Industry, Partnership, Probability, Time, Emergency, VMware, NIST, SSE, RMF, HACS, Technology, Organization, Federal, Federation, Cybersecurity and Infrastructure Security Agency, Software as a service, Social support, MBE, Benchmarking, Leinster Schools Rugby Senior Development Cup, Business, Management, Risk management, Medical device, Tourism, Computer security

CHICAGO, May 23, 2022 /PRNewswire/ -- A1PlusSoft, Inc., an innovative Minority Business Enterprise (MBE), today announced a strategic partnership to leverage eFortresses vast experience, security breaches research, and thought leadership in Cybersecurity of over 20 years across every major industry vertical, to assist US Federal Agencies to reduce their breach probability.

Key Points: 
  • CHICAGO, May 23, 2022 /PRNewswire/ -- A1PlusSoft, Inc., an innovative Minority Business Enterprise (MBE), today announced a strategic partnership to leverage eFortresses vast experience, security breaches research, and thought leadership in Cybersecurity of over 20 years across every major industry vertical, to assist US Federal Agencies to reduce their breach probability.
  • eFortresses SaaS platform leverages this data to enable partners like A1PlusSoft to rapidly assess the breach probability of clients.
  • A1PlusSoft will leverage its recent approval and listing in the GSA Highly Adaptive Cybersecurity Services (HACS) to deliver this innovation and insight to US Federal Agencies.
  • eFortresses developed the first and most comprehensive Cyber Security Rating Services (SRS) platform, focused on cloud security assessments, scoring, and benchmarking.

SteelCloud Software Automates eMASS and Splunk Data Integration

Retrieved on: 
Tuesday, April 5, 2022
Chrome, Microsoft, SQL Server, IIS, Risk management framework, STIG, Ubuntu, CENTOS, United States Department of Defense, ASR, SCADA, Automation, GSA, Defense Information Systems Agency, CISCO, FISMA, Oracle Linux, Environment, RMF, DISA, Microsoft Office, Government, Apache, SUSE, Documentation, IE, CIS, Information assurance, SIEM, Defense, Microsoft Windows, Accreditation, Policy, COTS, Red Hat Enterprise Linux, Checklist, EMASS, ARF, Risk management, Splunk

ASHBURN, Va., April 5, 2022 /PRNewswire/ -- SteelCloud LLC, a leading STIG and CIS compliance automation software developer, announced today the availability of a new release of its ConfigOS software that creates bulk STIG Viewer checklists and integrates human and machine controls into data feeds for eMASS and Splunk.

Key Points: 
  • SteelCloud's ConfigOS software automates the production of thousands of completed checklists, for an entire infrastructure, with only a few keystrokes.
  • Additionally, ConfigOS automatically integrates STIG Viewer checklist manual controls into its data feeds for Splunk or the customer's SIEM of choice.
  • "Our software saves over 95% of the effort to complete Checklists and load eMASS, and it automates this process in near real-time, ensuring the synchronization of the environment, the Checklists, eMASS, and SIEM.
  • SteelCloud provides this new eMASS automation and Splunk integration capability as a no-charge enhancement to all customers in version 2.8.4 of ConfigOS.

HTA Announces New Subcontract Award to The National Historically Black Colleges & University Alumni Association Foundation

Retrieved on: 
Wednesday, February 23, 2022
Cloud, RVA, Partnership, COVID-19, Employment, Risk management framework, Government, Creativity, Insurance, Information, Intelligence, Student, Health, Education, IV, Man, Defense, University, Minority, HBCU, Industry, Penetration test, Historically black colleges and universities, SAR, RMF, Woman, Cloud computing security, Woman-owned business, Pandemic, Security Consultancy Wing, HTA, Technology, Professional, SSE, Knowledge, IV&V, CEO, Medicine, Computer security, Small

WASHINGTON, Feb. 23, 2022 /PRNewswire/ --HTA Technology Security Consulting (HTA)and The National Historically Black Colleges & Universities Alumni Associations Foundation (NHBCUAAF) are pleased to announce a new "HBCU Cybersecurity Cohort Pipeline Program" partnership.

Key Points: 
  • WASHINGTON, Feb. 23, 2022 /PRNewswire/ --HTA Technology Security Consulting (HTA)and The National Historically Black Colleges & Universities Alumni Associations Foundation (NHBCUAAF) are pleased to announce a new "HBCU Cybersecurity Cohort Pipeline Program" partnership.
  • This collaboration assists the nation's historically Black colleges and universities with their Cybersecurity workforce development challenges and providesstudent engagement pathways for education and employment.
  • Students need the knowledge and skills to support employment tenets fundamental to their career growth and development.
  • The National Historically Black Colleges & Universities Alumni Associations Foundation, established in 2016, is a premier organization comprised of alumni leaders and associates from HBCUs.

Cubic Awarded DoDIN APL Certification for M3-SE and M3X Network Switches

Retrieved on: 
Monday, January 10, 2022
Security, Defense, Technology, Software, Other Defense, Hardware, APL, Risk management framework, Aviation Performance Solutions, M3X, Safety, SFP, Defense, JITC, Department, Cisco Systems, RMF, Dodin, Cubic Corporation, Gigabit, Corporation, CMPS, Twitter, POE, C4ISR, Transport, United States Department of Defense, Internet service provider, Video game console, Cubic

Cubic Corporation today announced that its Cubic Mission and Performance (CMPS) division has successfully obtained DoDIN APL listing for three of its rugged network switching modules: M3-SE-SW24G, M3X-S8G and M3-24G.

Key Points: 
  • Cubic Corporation today announced that its Cubic Mission and Performance (CMPS) division has successfully obtained DoDIN APL listing for three of its rugged network switching modules: M3-SE-SW24G, M3X-S8G and M3-24G.
  • Currently, these are the only Cisco embedded switch modules on the Department of Defense Information Network Approved Products List (DoDIN APL).
  • The DoDIN APL, formally JITC APL, represents the agency's master list of products available for purchase that are secure, trusted, and approved for deployment within the DoD's technology infrastructure.
  • The modular, stackable M3-SE and M3X switches allow users to upgrade their current M3-SE or M3X server and network deployments with minimal changes to system design.

Samsung NeuroLogica Receives Authority to Operate from the Defense Health Agency for RS85 Prestige

Retrieved on: 
Wednesday, August 11, 2021
Medical Devices, Health, Minnesota, Defense, Health, Digital radiography, Medicine, Maintenance, Samsung, Risk management framework, Ultrasound, ATO, United States Department of Defense, Steven Novella, Risk management, Defense Health Agency, MTF, Marketing, Apple Inc. v. Samsung Electronics Co., Patient satisfaction, Medical imaging

Samsung NeuroLogica Corp. today announced that it received the Risk Management Framework approval, Authority to Operate (ATO) from the Defense Health Agency for its RS85 Prestige Ultrasound.

Key Points: 
  • Samsung NeuroLogica Corp. today announced that it received the Risk Management Framework approval, Authority to Operate (ATO) from the Defense Health Agency for its RS85 Prestige Ultrasound.
  • The ATO designation allows Samsung's RS85 Prestige to be used in Medical Treatment Facilities (MTF) across the globe.
  • The RS85 Prestige is the latest addition to the company's portfolio of ultrasound systems designed with novel diagnostic features across each application based on the outstanding imaging performance.
  • "With this new ATO designation, Samsung NeuroLogica is thrilled to be able to offer our RS85 Prestige Ultrasound to Medical Treatment Facilities worldwide," said David Legg, Vice President of Ultrasound and Digital Radiography at Samsung NeuroLogica.