“There’s no silver bullet solution with cyber security, a layered defense is the only viable defense.”
James Scott, Institute for Critical Infrastructure Technology
At Decision Lens, ensuring the security of your data and information is the single most important business commitment that we have as an organization. It begins every conversation, and is shown in our investments in the latest certifications and tools, ensuring that your most important assets are our most important assets.
Read for details on how we secure our application and ensure only authorized users are accessing our software, the physical safety of your data and mitigate the human-risk associated with security.
FedRAMP
As a FedRAMP Compliant CSP, Decision Lens offers enhanced security, assurance, and compliance for its customers throughout the federal government, including Department of Defense. These are above and beyond the typical benefits derived from a cloud hosted solution: real cost savings, documented and tested contingency and disaster recovery and continuous, monthly updates of known issues.
Additional security benefits of FedRAMP include:
Independently Verified Compliance: FedRAMP Moderate and DoD IL4 controls are assessed annually by a FedRAMP accredited Third Party Assessment Organization (3PAO).
Enhanced Security: Implementation of over 300 rigorous security controls to protect sensitive customer data.
Continuous Monitoring: Able to respond immediately to threats through regular system log monitoring, file integrity monitoring, intrusion detection and prevention, vulnerability scanning, and penetration testing to ensure ongoing system integrity and availability.
Security Training: Role-based security training for users with sensitive security roles
Security Overview1-Page overview of key security highlights
In addition to integrating with identity management systems, Decision Lens also provides customizable security with minimum requirements according to industry best practices.
Time-based Password Expiration
Two Factor Authentication (2FA)
Strong Password Complexity Rules
Inactivity Based Account Locking
Customizable Rules
Single Sign-On
Decision Lens offers flexibility by integrating with your identity management system.
Security Assertion Markup Language (SAML)
Common Access Card (CAC)
Active Directory (AFDS)
Public Key Infrastructure Reader (PKI)
Trusted HTTP Headers
Non-SSO Deployments
In addition to integrating with identity management systems, Decision Lens also provides customizable security with minimum requirements according to industry best practices.
Time-based Password Expiration
Two Factor Authentication (2FA)
Strong Password Complexity Rules
Inactivity Based Account Locking
Customizable Rules
Current Authority to Operate
Decision Lens is IL-2 compliant / approved and IL4 ready. We also have supported SIPR and JWICS deployments.
.
FedRAMP
Department of Agriculture
Department of Health and Human Services
General Services Administration
National Parks Service
United States Forest Service
Department of Defense
AFSOC
TRADOC
Currently Support Self-Hosted ATOs
Cybersecurity Maturity Model Certification (CMMC) Compliance
Decision Lens is currently applying for the newly required Cybersecurity Maturity Model Certification compliance to provide assurances regarding how we control access to unclassified information.
Status: In Progress (Target Approval Date Mid-2021)
.png)
