Cybersecurity 

For the National Institutes of Health (NIH), the scope of the project included cybersecurity architecture and solution implementation for the Integrated Workplace Management System (IWMS), which included Zero Trust Architecture and Engineering principles. The Integrated Workplace Management System provides capabilities specific to facility management and asset management, including medical devices, PHI, PII, and Personal Data. For the National Institute of Health project, Square One Technologies performed cybersecurity services for the Nuvolo deployment on the ServiceNow platform, while adhering to the NIST Risk Management Framework, NIST Cybersecurity Framework, and implementing as well as assessing NIST 800-53 security controls. Based upon NIST CSF and NIST 800-53, implemented security capabilities specific to the management, operational and technical safeguards. This included performing system hardening via NIH Environment Hardening Guidelines. Square One Technologies Inc. also ensured that the security controls protect the confidentiality, integrity, and availability of the ServiceNow platform. To assess the cybersecurity posture of the Nuvolo deployment on the ServiceNow platform, Square One Technologies Inc. determined the NIST CSF maturity level and the extent to which the NIST 800-53 security controls were implemented correctly, operating as intended and producing the desired outcome with respect to meeting the security requirements for the system. When security gaps and risks were identified, Square One Technologies Inc. mapped to the Six Functions (Govern, Identify, Protect, Detect, Respond, and Recover) included in the NIST Cybersecurity Framework. Square One Technologies delivered a Cybersecurity Assessment Report with respect to the security maturity, risk, observations, summary of findings, scope, information, recommendations, and remediation suggestions.