Many companies in the healthcare market struggle with compliance projects and finding the time and knowledgeable resources, as-well-as the budget, to adhere to government regulations in a timely manner.
For this particular healthcare organization, achieving FISMA compliance within one year was paramount. The accreditation included all aspects of Security Assessment and Authorization (SA&A), Information Assurance (IA), and Information Security (InfoSec). The results:
- Developed over 30 organizational policies and procedures
- Created the System Security Plan (SSP), Risk Assessment (RA), and Disaster Recovery Plan (DRP)
- Helped with the network configuration and DISA STIGs in the environment
- FISMA & NIST compliant environment
This type of accreditation, given where the company was in the process, was estimated to take several years. Lynx helped this client attain FISMA compliance within 9 months. How did they do it? Read the full case study to find out.