Cybersecurity is fundamental to everything we do at InterImage. Whether it’s protecting infrastructure, applications, networks, or devices, we are proficient at helping our customers safeguard their critical information and operations. Our depth and breadth of experience span the entire cybersecurity spectrum and include cyber defense, cyber resilience, and incident response.
We have specialized expertise supporting the government’s Authority to Operate (ATO) security process, including the assessment, development, and processing of ATO packages, per the National Institute of Standards and Technology (NIST) 800-53 Risk Management Framework (RMF). Furthermore, cybersecurity is baked into all our application development and infrastructure services work to minimize risk and maximize mission assurance. In short, we do whatever it takes to identify and manage risk in support of our customers’ missions.
Walter Reed Army Institute of Research (WRAIR) is the largest, most diverse biomedical research laboratory in the Department of Defense. Its mission includes developing and testing products that will ultimately reduce the impact of some of the most dangerous and debilitating diseases facing U.S. service members. This mission requires the use of a variety of specialized medical devices. InterImage was charged with ensuring that nearly 400 offline medical devices received RMF-based security certification so that they could be confidently attached to the WRAIR network.
The medical devices are a mixture of commercial and government off-the-shelf products and custom applications—most with different manufacturers and disparate operating systems. We assessed the devices using vulnerability scanning to identify specific risks and then evaluated the risks and their potential impact on the WRAIR. We then created mitigation and remediation strategies to facilitate full ATO device accreditation and prepared accreditation packages using the NIST RMF process. The project was completed on schedule in 14 months, and the devices now operate securely on the network.