ASSYST has been awarded the CMS Security & Privacy Officer Support Services (CSPOSS) contract to provide cyber security Subject Matter Experts (SME) supporting the CMS Chief Information Security Officer (CISO) and Chief Information Officer (CIO) in their objectives for maintaining and managing secure and compliant FISMA Systems. This involves delivering Cyber Risk Advisors (CRAs) as a Service, Information Systems Security Officers (ISSOs) as a Service, and ISSO Advocacy and Support Programs.
Our program delivery will support CMS Business Owners, CISOs, and executive leadership with seasoned cyber expertise to log FedRAMP ATO documentation, implement NIST RMF accurately, utilize risk data to guide decision-making, strategize POA&Ms, facilitate Zero-Trust frameworks, oversee the successful implementation of procedures, ensure the effectiveness and documentation of CMS and Security controls, manage activity for information systems and data usage to remain compliant with FISMA standards and adhere to policy and practices with CMS and NIST guidelines. ASSYST services will help CMS achieve its cybersecurity objectives by providing expert support in managing cybersecurity efforts and developing the necessary skills and knowledge among CMS cybersecurity personnel.
Vinay Shirke, the CIO at ASSYST, expressed his delight about the contract award. He said establishing Cyber Security Service Delivery Models will significantly reduce the burden for Business Owners and CISOs. These models will help identify and foster qualified cyber talent to manage FISMA systems effectively. They will also help in implementing and overseeing NIST controls, envisioning strategic roadmaps, leveraging risk data to make informed decisions regarding policy and procedure, and maintaining required documentation for obtaining and maintaining an ATO.
Cybersecurity Services
ASSYST provides cyber support services that help customers with portfolios of FISMA Systems to manage risks effectively and comply with regulations. Our services include risk management, policy and compliance, vulnerabilities, knowledge management, data management, project management, and talent management for CISOs and business leaders. Our Security Data Lake Solution harmonizes data and improves holistic threat intelligence through actionable insights. Our unique ISSO-as-a-Service (ISSOaaS) and SOC-as-a-Service (SOCaaS) connect you with adaptable security professionals who follow industry best practices to support your organization's Cyber Mission Assurance. ASSYST’s ComplySync solution applies AI/ML and collaborative document intelligence to help agencies acquire Continous Authority to Operate (cATO) capabilities.
Our seasoned cyber security experts adhere to industry standards and best practices such as NIST CSF/RMF, PMBOK, ISO 27001/9001, HS2P2 guidelines, and Zero-Trust frameworks. We offer a Cyber Resilience Program with various engagement, education, and training initiatives for customer cyber experts, business owners, and cyber leadership. These initiatives help them discuss evolving trends, share their best practices based on experience, and grow their knowledge base through certifications.