PASADENA, CA – Telophase Corporation has established a trusted foundation in support of NASA JPL initiatives. Our history at JPL began in early 2020 when our highly experienced Telophase Security Control Assessment (SCA) team was requested by the NASA Science Mission Directorate (SMD) to support mission critical pre-launch (first ever) security assessments of the JPL Mars 2020 Perseverance rover systems. These successful assessments played a critical role in the early life cycle pre and post launch phases for Mars 2020 systems. After the success of these support activities, Telophase has expanded our JPL footprint and continues to provide ongoing support with senior SMEs for multiple JPL divisions participating in lab-wide initiatives.
The Telophase SCA model has been effectively employed at GSFC and other NASA centers for the past ten years and leveraged by the Agency for continuous and on demand high profile SCAs for mission systems such as Hubble Space Telescope, James Webb Space Telescope and Near Space Network. Various aspects of this mature SCA model continue to be employed at multiple NASA centers. The combination of skilled experienced, knowledgeable SMEs fluent in NIST Special Publications, NASA policies and handbooks, and OMB standards along with deep technical acumen to analyze device outputs via custom scripts for all major operating systems, provide a complete evaluation of information system risk posture.
Our current ongoing efforts at JPL include security common control strategy, development of procedures and compliance reporting efforts, custom Assessment & Authorization (A&A) processes to foster training and development of security assessors. Our team is continuously creating and updating all supporting documents for the A&A processes including information security continuous monitoring methodologies. We employ and train information security stakeholders on the use of Telophase custom developed technical scripts to identify cyber risks and vulnerabilities on devices running on all major operating systems. Our Cloud systems architect support expertise involves participation and contributions to reviews of Software as a Service (SaaS) applications and Cybersecurity SaaS requirements. We work on model design leveraging service policies for all major Cloud Service Provider (CSP) platforms.
We work closely with system stakeholders in the Agency Governance Risk and Compliance (GRC) tool and help with data migration aligned with the NIST Risk Management Framework (RMF). We assist organizations to document security implementations of their systems and mature cybersecurity processes by identifying and aligning with Agency requirements. A key aspect of our efforts entail training and working with projects directly about security requirements and how to capture, track and monitor security artifacts.
