The future of batCAVE looks bright as CMS continues to invest in cutting-edge technology to meet the evolving needs of healthcare. The batCAVE platform has already proven to be a powerful tool for streamlining software development efforts, enabling compliance, and improving security measures.
Centers for Medicare & Medicaid Services' (CMS) commits to enabling innovation and prioritizing security as part of its mission to provide accessible, high-quality healthcare to millions of Americans.
CMS needed to optimize their software development process and enhance security measures. They aimed to streamline development, reduce costs, and prioritize security while implementing new technology. Collaboration with stakeholders helped identify potential threats and vulnerabilities. Complying with complex regulations and policies was a priority.
Our team took a customer-centric approach, prioritizing the needs of CMS and its stakeholders throughout the development process.
“It’s an engineering shift. Then ultimately, if we can build it once, run it in most cases everywhere or piecemeal run it, run pieces of it everywhere — then we can maximize control inheritance … taking away most of that prep time, taking away most of that [minimum viable product] build time, so you can focus on building features, building user experiences, building data models, building whatever it is that’s going to solve your problem and add value to your stakeholder.”
Robert Wood, CISO, CMS
Enter batCAVE, a development and production platform that provides a fast, simple, and secure way to deploy CMS applications to the cloud.
The CAVE in batCAVE stands for Continuous Authorization and Verification Engine which means that applications developed on this platform are continuously verified and authorized to deliver value even when there are changes to the software.
As a platform-as-a-service (PaaS), batCAVE accelerated the time to production by automating a majority of the security, infrastructure, onboarding, and data workload.
Automated account setup and provisioning with a dedicated contact to guide you through onboarding stages.
batCAVE integrated applications with required CMS Cloud external services including infrastructure networking tools, logging, and monitoring.
Reduced the security and infrastructure burden on ADOs through inheritable security controls and control mapping.
The automated account setup and provisioning, along with a dedicated contact for onboarding, have further simplified the process. Integration with required CMS Cloud external services has been seamless, including networking tools, logging, and monitoring.
Achieve ATO in months instead of years
Leverage ongoing authorization, alleviating the 3-year ATO cycle
Build in repeatable and extensible infrastructure
Receive feedback faster by leveraging continuous integration and deployment
Overall, the batCAVE DevSecOps platform has enabled CMS to meet their goals for efficiency, security, and compliance, while also providing a streamlined and user-friendly experience for their staff.
The future of batCAVE looks bright as CMS continues to invest in cutting-edge technology to meet the evolving needs of healthcare. The batCAVE platform has already proven to be a powerful tool for streamlining software development efforts, enabling compliance, and improving security measures.
In the coming years, batCAVE is likely to evolve to provide even more comprehensive solutions to CMS's challenges. We can expect the platform to continue integrating with new technologies and services to further enhance its capabilities. Additionally, batCAVE will likely continue to provide ongoing support for CMS's cloud migration, enabling the agency to take full advantage of the benefits that cloud computing has to offer.