Risk
8/20/2012
02:05 PM
Dark Reading
Dark Reading
Products and Releases
Connect Directly
RSS
E-Mail
50%
50%

Foreground Security And CCSi Awarded $30 Million Contract With Centers For Medicare & Medicaid Services (CMS)

eCloud provides centralized hosting, oversight, and management of the agency’s IT systems

ROCKVILLE, Md.— August 20, 2012 – Creative Computing Solutions (CCSi), a leading provider of program/project management services, cybersecurity and security services, and enterprise systems engineering to the federal government, and their partner Foreground Security, a leading provider of cybersecurity services and solutions, today announced that it has been awarded a contract to support the Centers for Medicare & Medicaid Services’ (CMS’s) new virtual data center, eCloud. Unifying CMS’s data center assets, eCloud provides centralized hosting, oversight and management of the agency’s IT systems, supporting up-to-date, quality and efficient health care services for beneficiaries. Foreground Security is already supporting cybersecurity efforts for CMS on systems and applications that support the Affordable Care Act through eCloud.

Under the terms of the contract, which has a potential performance period of five-years and a ceiling value of over $30 million, CCSi and Foreground Security will partner with CMS to implement an operational security management program for eCloud. These efforts will support 24x7x365 security monitoring and configuration, tuning, monitoring and management of CMS government furnished equipment (GFE). Additionally, CCSi and Foreground Security will provide Security-as-a-Service to supplement current CMS security capabilities.

“This contract win demonstrates the strength of CCSi and Foreground Security’s partnership and marks one of our greatest milestones as we establish a relationship with CMS and embark on a project to expand our impact in the healthcare arena,” said Tor Opsahl, Executive Vice President of CCSi. “We are pleased to participate in this leading-edge program to support the Affordable Care Act and look forward to leveraging the full range of our team’s security capabilities and healthcare thought leadership.”

“We are extremely pleased to continue our strong partnership with CCSi and support the vital missions of CMS as the agency expands its technology programs and capabilities under the Affordable Care Act,” said David Amsler, President and CIO of Foreground Security. “Together with our program partners, Foreground is committed to continuing to provide CMS the trusted and secure foundation necessary for eCloud and similarly critical IT systems.”

CCSi is at the forefront of Health, Health IT and general IT services. For over 10 years, CCSi has worked with the U.S. Department of Veterans Affairs (VA) through the modernization of My HealtheVet (MHV), a free, online Personal Health Record (PHR) that empowers Veterans to become informed partners in their health care. CCSi also provides senior-level, subject matter expertise (SME) that is instrumental in supporting DoD Health environment initiatives for DoD TRICARE Management Activity (TMA), Force Health Protection and Readiness (FHP&R), Defense Health Board (DHB), Defense Center of Excellence (DCoE) for Traumatic Brain Injury (TBI) and Psychological Health (PH), and DoD Health Affairs.

About CCSi

Founded in 1992, CCSi is a woman-owned, recently graduated small business specializing in business process transformation, program/project management services, security and information assurance solutions, and enterprise systems engineering. A full service business solutions provider, CCSi offers federal clients end–to–end solutions and provides a wide range of services including business consultation, financial analysis and management support, systems engineering and integration, education and training, conference management and cost benefit analysis. CCSi’s Quality Management Program based on ISO, CMMI, PMI, and ITIL standards and principals provides a framework for continuous improvement in management, technical and communication processes. For more information about CCSi, please visit http://www.ccsin.com/ or follow us on Twitter @CCSiGov.

About Foreground Security

Foreground Security, a woman owned, small disadvantaged business, is a security consulting, training and services firm that believes in integrating leading edge security services, training, technologies, and commercial best practices in order to assist government and private sector organizations in strengthening their security posture. With offices in Virginia and Florida, the company employs highly skilled security architects and engineers that provide customers with the proven expertise and real-world implementation experience required to protect against today’s leading threats. With strong demand for its services, Foreground Security is continuing to grow rapidly and was recognized as an Inc. 500 fastest growing private company for the past three years. For more information about Foreground Security, visit: http://foregroundsecurity.com/.

Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
White Papers
Flash Poll
Current Issue
Cartoon
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2014-4013
Published: 2014-07-14
SQL injection vulnerability in the Policy Manager in Aruba Networks ClearPass 5.x, 6.0.x, 6.1.x through 6.1.4.61696, 6.2.x through 6.2.6.62196, and 6.3.x before 6.3.4 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.

CVE-2014-4944
Published: 2014-07-14
Multiple SQL injection vulnerabilities in inc/bsk-pdf-dashboard.php in the BSK PDF Manager plugin 1.3.2 for WordPress allow remote authenticated users to execute arbitrary SQL commands via the (1) categoryid or (2) pdfid parameter to wp-admin/admin.php.

CVE-2014-4945
Published: 2014-07-14
Multiple cross-site scripting (XSS) vulnerabilities in Horde Internet Mail Program (IMP) before 6.1.8, as used in Horde Groupware Webmail Edition before 5.1.5, allow remote attackers to inject arbitrary web script or HTML via an unspecified flag in the basic (1) mailbox or (2) message view.

CVE-2014-4946
Published: 2014-07-14
Multiple cross-site scripting (XSS) vulnerabilities in Horde Internet Mail Program (IMP) before 6.1.8, as used in Horde Groupware Webmail Edition before 5.1.5, allow remote attackers to inject arbitrary web script or HTML via (1) unspecified flags or (2) a mailbox name in the dynamic mailbox view.

CVE-2013-6117
Published: 2014-07-11
Dahua DVR 2.608.0000.0 and 2.608.GV00.0 allows remote attackers to bypass authentication and obtain sensitive information including user credentials, change user passwords, clear log files, and perform other actions via a request to TCP port 37777.

Best of the Web
Dark Reading Radio
Archived Dark Reading Radio
Marilyn Cohodas and her guests look at the evolving nature of the relationship between CIO and CSO.