Automating and Mitigating Enterprise Risk

VA recently implemented the Enterprise Mission Assurance Support Service (eMASS) — a web-based, Government off-the-shelf, software as a service (SaaS) capability that automates a broad range of processes for comprehensive, fully integrated cybersecurity management, including dashboard reporting, workflow automation, and continuous monitoring supporting Risk Management Framework for Assessment and Authorization. eMASS provides an integrated suite of authorization capabilities to improve cyber risk management, including context to understand mission impact by establishing process control mechanisms for obtaining Authorization to Operate decisions.

eMASS Cybersecurity Strategy empowers the cybersecurity workforce through its control-requirements wizard, intuitive user interface, robust customizable workflows, and auto-generation of security compliance package reports. This process automation enables more time spent on securing the network and not interpreting the policy. Through improved cyber-situational awareness, eMASS enables users to readily identify vulnerabilities and make decisions concerning cybersecurity personnel and program needs. Through its central management and governance of an enterprise’s cyber policy, eMASS promotes speedy delivery of policy changes and dramatically improves the cycle time to effect these changes directly through to individual teams.