U.S. Department of Health and Human Services (HHS), Centers for Medicaid and Medicare (CMS)

CASE STUDY BELOW

CIVILIAN AGENCY

U.S. Department of Health and Human Services (HHS), Centers for Medicaid and Medicare (CMS)

SCOPE OF WORK

Nationwide FISMA Audit for the Centers for Medicare & Medicaid Services

DESCRIPTION OF PRODUCTS AND SERVICES PROVIDED TO CUSTOMER

At the Department of Health and Human Services, Enlightened is currently tasked with the following:

• Providing Security IT support to perform a nationwide FISMA audit of each of the Quality Improvement Organization (QIO) facilities consisting of 57 separate physical sites, representing each state, as well as the District of Columbia, Puerto Rico, and the U.S. Virgin Islands
• Performing project management and quality assurance oversight
• Documenting the existing security posture and the level of FISMA compliance of each QIO site and identifying deficiencies in the security posture according to NIST 800-53.
• Categorizing the weaknesses (low, moderate, high), providing recommendations for security improvement, and identifying associated costs required to bring the QIO community into FISMA compliance.

OUTCOME/VALUE/BENEFIT TO CUSTOMER

CMS has now identified the processes needed to prevent, detect, and prohibit any unauthorized use of their computer assets; safeguarding the health and well-being of American citizens and patients.