Articles

eMASS Automation and Uniting the Missing Security Compliance Data

January 11, 2022

How eMASS Automation Unites the Missing Security Compliance Data

eMASS, or the Enterprise Mission Assurance Support Service, was developed by the DoD, in part, as a repository that unites technical/machine data generated from endpoint scans with the human/non-technical data documented by security/IA personnel. Traditionally the “uniting” process is accomplished by completing a STIG Viewer Checklist for each policy for each endpoint.

Understanding the STIG Viewer Checklist Problem

These checklists are traditionally hand-created by pre-populating checklists for each policy with the appropriate non-technical data together with POAM/waiver information. Then security personnel combines the XCCDF output from the system scan (ACAS/SCAP) to create, name, and store the individual checklists for each endpoint. Once completed, the individual checklists that consolidate scan and human data are loaded into eMASS. Keeping eMASS current with the latest security information through this checklist creation and upload process is a challenge, both from a timeline and a personnel resource standpoint, since the process is inherently manual. As one can imagine, consistency, timeliness, and error handling are constant issues in such a human-dependent process.

Unifying eMASS and SIEM Data

eMASS currently supports more advanced ways to ingest information through API or ARF/ASR file interfaces. However, two challenges remain – how to access and integrate the human/non-technical data for eMASS and efficiently create fully-populated checklists required outside of eMASS. Beyond these two challenges, there is a great opportunity also to integrate the combined human/machine security compliance data to feed the organization’s own dashboards. If this collective data feed could be compiled, the organization’s SIEM would represent the whole security compliance picture – not just the partial picture represented by only scan data.

Is It Time for Something New?

Unfortunately, the processing architectures of scan-only products do not afford the DoD with any option to address the requirement to combine security data and create fully-populated STIV Viewer Checklists effectively. Therefore a new solution will need to be invented . . .

Share This Resource:

Interview: Anchors Away: Maritime Cybersecurity Voyage Prev post

White Paper: eMASS Automation Next post

Privacy Overview

This website uses cookies to improve your experience while you navigate through the website. Out of these, the cookies that are categorized as necessary are stored on your browser as they are essential for the working of basic functionalities of the website. We also use third-party cookies that help us analyze and understand how you use this website. These cookies will be stored in your browser only with your consent. You also have the option to opt-out of these cookies. But opting out of some of these cookies may affect your browsing experience.

Necessary

Always Enabled

Necessary cookies are absolutely essential for the website to function properly. These cookies ensure basic functionalities and security features of the website, anonymously.

Cookie	Duration	Description
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.

Functional

Performance

Analytics

Others

eMASS Automation and Uniting the Missing Security Compliance Data

How eMASS Automation Unites the Missing Security Compliance Data

Understanding the STIG Viewer Checklist Problem

Unifying eMASS and SIEM Data

Is It Time for Something New?

Resource Library

Recent Resources

Featured Resources

Six Obstacles to Achieving Cybersecurity Maturity in Higher Ed

Ten Signs Your Education Institution Needs CIS Benchmarks Cybersecurity

White Paper: Synchronizing Cyber Compliance Between IT and A&A Organizations

What We Do

Company

Support