FISMA News

USAMRMC Renews and Extends Use of Xacta IA Manager for Continuous Assessment and Remediation of Security Threats

(Dec 11, 2007)-- The U.S. Army Medical Research and Materiel Command (USAMRMC) has awarded Xacta Corporation contracts to provide Xacta IA Manager software and related services to help monitor and certify the organization’s IT security status. The contracts, totaling $730K, were a renewal and an expansion of a contract signed in 2004. The new contracts increase the number of software licenses and full-time Xacta security consultants working with USAMRMC at Fort Detrick, Md.

USAMRMC provides the medical knowledge and materiel that support the warfighter across the full spectrum of health care missions worldwide. The organization advances medical research and development, builds and operates medical technology systems, and delivers, maintains and disposes of medical equipment and supplies. In order to successfully fulfill its mission, USAMRMC must ensure its technology systems are secured and properly protected against attacks.

Xacta IA Manager was originally selected to ensure all systems working in the USAMRMC environment had the necessary authority to operate. Over time, the focus increased to also include continuous monitoring capabilities.

“Though regulatory compliance is very important, we wanted to transcend reporting issues and also focus on the critical security needs of the Army medical community,” commented Barbara McFadden, deputy chief of staff for information management with USAMRMC. “The Xacta team members working with us on site, using Xacta IA Manager’s Continuous Assessment upgrade, provide us with an automated tool to assist us in assessing our security posture on an ongoing basis – not just in response to reporting requirements. This tool assists in alerting us of potential problems and suggests quick remediation strategies. It assists us in protecting our systems while also allowing us to satisfy regulations ranging from FISMA (Federal Information Security Management Act) to DIACAP (DoD Information Assurance Certification and Accreditation Process).”

Xacta IA Manager combines industry-leading compliance and continuous risk assessment functionality with powerful security management and security process enforcement capabilities. It helps organizations catalog their systems, check their security status, report security status in response to regulatory compliance, continually assess the systems for ongoing compliance, and enforce security processes organization wide.

“Xacta has enjoyed a highly-productive working relationship with USAMRMC for the last three years, and we look forward to continuing the relationship many years into the future,” commented Ron Dorman, vice president of information assurance solutions for Xacta. “USAMRMC’s mission is critical for the safety and well-being of our troops, and it’s an honor to work with them to help ensure systems are protected so they can move forward quickly in their important role.”

Share or bookmarklet this web page at: