CYBER

SOLUTIONS

Security minded. Mission focused.

Mission Enablement Through Secure Operations

Our approach to cybersecurity and risk management places organizational mission at the forefront of our efforts. We execute with the goal of driving business operations forward through effective cyber risk and management.

We combine IT and security domain expertise with problem solving skills and consulting acumen to develop, transform and execute enterprise cybersecurity programs. Our experts speak the languages of our respective stakeholders at all levels of the Federal Government to support innovation and modernization in an ever-changing threat landscape.

What We Do.

 

How We Can Help

 

ABOUT
Cyber Program Transformation
ABOUT
Cyber 
Operations
ABOUT
Governance, Risk, and Compliance
ABOUT
Cyber Program Engagement 

We secure more than 185 Federal Information Systems including mission critical, privacy, classified, financial, and cloud-based systems.

Featured Case Study

Getting to Green on a FISMA Scorecard
Client's Needs

Our client was facing pressure from agency leadership due to poor FISMA scorecard performance. Many of the rated areas were in the “red” zone and were attracting unwanted attention. Our client needed to improve their scorecard and “Get to Green”.

Challenge They Faced

Our customer faced many challenges in graded scorecard metrics. For example, in Weakness Remediation and Vulnerability Management, unrealistic deadlines and poorly developed Plans of Action and Milestones (POA&M) were causing POA&Ms to be overdue, and they faced resource challenges with closing them out. Configuration Management activities were performed in an Ad-hoc and inconsistent manner, causing system changes to have an unintentional adverse impact on security posture. Some systems were operating with expired ATOs, or no ATO at all. Many systems operated with no IT Contingency Plan, and those that had plans were rarely tested. The breadth and complexity of challenges causing these issues required a comprehensive solution.

Results We Delivered

EGT first performed root cause analysis to understand the underperforming security functions, and what was ultimately causing the failing grades. Some of the significant findings were a lack of understanding of the factors taken into consideration in determining the FISMA scores, and unnecessary duplication of efforts across teams supporting the FISMA systems. We developed a “Get to Green” plan that identified actions with a low:high resource:impact ratio. As an example, updating existing POA&Ms so they became compliant with departmental requirements led to the POA&M scores going from 7% to 93% for one system, even before significant progress was made towards weakness remediation. We also developed and improved processes and standard operating procedures, provided the right experts, worked with other vendors in a collaborative and transparent manner and reported on all of this regularly to manage customer expectations. As a result of our ongoing efforts, we were able to “Get to Green” on all systems for which we provide ISSO support, in as little as six months. We have been able to maintain or improve on this status on an ongoing basis. Our customer is now able to focus on applying information technology in furthering the agency mission, and less time addressing scorecard related questions and concerns.

Sample Scorecard

 

The scorecards measure agency performance in different cyber “areas of concern” and identify weaknesses that could be exploited by cybercriminals. 

I'm really amazed by the progress you and the team were able to make in such a relatively short period of time. I particularly appreciate the metrics that objectively demonstrate our [Federal] team’s engagement with you and your team. It’s gratifying to see that not only were good things accomplished but that they’re clearly needed and are filling a gap.

— Federal Agency, Deputy CISO

Real People Making a Difference

 

Jenny Brondyk headshot.jpg

Jenny B.

Task Lead

"I love it when I communicate with a client on a cyber challenge they're experiencing and develop a solution they may have never considered - each problem solved equals more efficiencies and stability for their systems!"

file0.jpg

Elizabeth V.

Director, Cyber Solutions

“It is highly rewarding to promote cybersecurity solutions for the Healthcare and Public Health sector and  provide guidance to health industry orgs on mitigating certain cyber threats.  I value promoting cyber hygiene best practices and enabling the protection of patient safety, data, and privacy."

What can we help you achieve?

 

Copyright 2020 | EGlobalTech | All rights reserved

  • LinkedIn Clean
  • Twitter Clean
  • Facebook Clean