Market Insights

Army Medical Command Selects CNF to Provide Engineering Support to Network Vulnerability Scanning Solution

SAN ANTONIO – The US Army Medical Information Technology Center (USAMITC)) has awarded CNF Technologies, a San Antonio based systems engineering company, a contract to support them with the deployment and sustainment of the Assured Compliance Assessment Solution (ACAS) to audit Army medical networks for vulnerabilities. The award has a contract value of almost $4 million over 5 years.

CNF will provide deployment, operations and maintenance support, configuration and inventory management, monitoring and patching, database management, systems security, program management, and systems administration of ACAS. ACAS utilizes the Tenable SecurityCenter, as the management console, and Tenable Nessus scanner, as the vulnerability scanning tool. SecurityCenter provides continuous asset-based security and compliance monitoring, unifying the processes of asset discovery, vulnerability detection, and configuration auditing. The SecurityCenter console works with Nessus scanners to look for policy changes every time a scan is requested. SecurityCenter ties directly to DISA’s Information Assurance Vulnerability Management (IAVM) system. On receipt of a new or updated information Assurance Vulnerability Alert (IAVA), SecurityCenter immediately deploys a new policy to Nessus scanners. That capability eliminates sometimes time-consuming waits for new policies to be manually written, improving security. CNF will provide subject matter experts in these technologies. ACAS will be deployed to about 34 Army hospitals and medical treatment centers across CONUS and OCONUS sites.

CNF’s Founder and CEO, Fred Ramirez commented on the award “This is big win for us. It adds the Army medical community as a major customer. In addition, our engineers will be working with a Best of Breed cyber defense technology that provides the ability to assess an organization’s security posture, as well as delivering analysis tools that allow the user to easily perform reporting, auditing, and remediation tasks”.

About CNF Technologies

CNF Technologies is systems engineering company offering a myriad of solutions in cyber operations and information assurance enabling government agencies and commercial companies to identify, understand, and mitigate security risks; assess and assure network and information integrity; and ensure compliance with Risk Management Framework, DIACAP, and FISMA. Since its founding in 2005, CNF has utilized their expertise to deliver unparalleled, cost effective results and unmatched customer service. CNF personnel have decades of experience in network defense, intrusion detection, and incident response, as well as designing, managing, and operating enterprise level systems. Clients include the Department of Defense, U.S. Air Force, 24th Cyber NAF, and Department of Veterans Affairs. For more information, visit CNF Technologies at

September 30, 2013 CNF Selected to Provide Army Medcom Support