Keeping America’s Federal Network Secure Keeping America’s Federal Network Secure RELI partners with Federal Agencies to protect the confidentiality, integrity, and availability of systems and data by ensuring compliance with state and federal regulations. Centers for Disease Control & Prevention (CDC) National Center for Health Statistics (NCHS) Risk Management Framework and Compliance Services We provide security consulting services to the CDC’s National Center for Health Statistics working closely with NCHS ISSO and CDC staff/contractors. We support NCHS compliance with FISMA, NIST RMF, the Office of Management and Budget directives, as well as all applicable HHS or CDC security and privacy requirements. Our security team performs policy analysis/development, information security risk analysis, information security incident response, and consulting services for NCHS business/systems stakeholders. We work to ensure that information security milestones are properly executed as part of the HHS Enterprise Performance Life Cycle (EPLC). RELI Group helps to produce standard operating procedures/tools for collecting security, training/security awareness, working with NCHS systems stakeholders and CDC’s Office of the Chief Information Security Officer (CDC/OCISO) to ensure Security Assessment & Authorization (SA&A) activities and requirements are completed and continuously monitored. Department of Health & Human Services (HHS) PhishMe Product Licensing & Support We are the prime contractor for product licensing and support for the Cofense software (formerly Phishme) for the U.S. Department of Health and Human Services’ (HHS) Office of the Chief Information Officer (OCIO), Office of Information Security (OIS) team. This contract consists of providing software licensing and servicing all twelve (12) operating divisions of the U.S. Department of Health and Human Services’ (HHS) organization. The software is implemented agency-wide, providing email phishing campaigns which aid in the identification of malicious email threats and report on the human susceptibility to threat management for organizations. The Cofense software modules consist of a Simulator, a software-as-a-service (SaaS) platform which immerses employees in simulated phishing scenarios with targeted security education. The PhishMe Reporter is an email add-on that enables employees to report suspicious emails by simply clicking a button on their toolbar. There is also a Triage module which provides a rapid response team with detailed information required to address the email threats quickly and efficiently. We work in unison with Cofense providing the Phishing Campaign professional services delivery team. TSA Office of the Administrator’s (ADM) Strategy, Policy Coordination, and Innovation (SP&I), Strategy & Plans (S&P) Branch Program Management Support Services (PMSS) for Strategy & Plans (S&P) We support S&P in implementing the actions required by the Transportation Sector Systems Specific Plan (TS SSP), National Strategy for Transportation Security (NSTS) and its supporting modal plans, related sector security management direction (e.g., agency or department directives, executive orders, and legislation) and any approved amendments and updates to these documents and other associated plans (i.e,. Transportation Sector Cyber Security Plan). Our support includes the development of plans to implement strategies for the transportation modes and routine status reports on the implementation of actions under the 9/11 Commission Act. The services performed under this Task directly support TSA’s management of security in the transportation sector and segments the planning teams with necessary project management, process design and measurement, and reporting skills, systems, and capabilities.