The Rhode Island Executive Office of Health and Human Services (EOHHS) Unified Health Infrastructure Project is an enterprise-level initiative across five agencies to implement an Integrated Eligibility System for all insurance affordability and public assistance programs, including Medicaid, CHIP, SNAP, TANF, and Child Care.
Security Assessments for MARS-E and Testing
EOHHS contracted with CSG to provide MARS-E assessments and perform a suite of complimentary security assessment services. Our team worked with the State and DDI vendor to provide targeted, release-focused dynamic and static vulnerability assessments that enabled discovery and correction of potential vulnerabilities as early as possible in the SDLC, while maximizing the value of scanning activities and implementing additional safeguards. CSG performed monthly and quarterly application and network security scans to identify potential vulnerabilities and conducted penetration testing to exploit potential vulnerabilities in support of MARS-E continuous monitoring requirements. We also performed static source code scans for each major release to identify security concerns within the code, providing an all-encompassing independent analysis and recommendations to address vulnerabilities with overall system security. CSG also oversaw UAT to validate system functionality and provided test result reports to support the established review process, assisting the State in obtaining federal certification.
