FedRAMP-Authorized Environment
Your data is hosted in our AWS environment, certified by FedRAMP®. This certification ensures that our infrastructure meets rigorous government security standards, offering reliable protection for your information.
Robust Disaster Recovery Practices
Disaster recovery is a key component of our security strategy. We conduct regular testing to verify that your data can be restored in unexpected situations.
Comprehensive Data Encryption
All data within CMTS is encrypted both at rest and in transit, safeguarding your information from unauthorized access during storage and transmission.
FedRAMP®
CMTS is FedRAMP® Moderate Baseline authorized, offering federal agencies a secure and compliant platform for case management. This authorization ensures CMTS meets the highest government security standards, providing peace of mind that sensitive data is well-protected. Whether deployed in the cloud or on-premise, CMTS delivers flexibility alongside stringent security to support your agency's unique needs.
StateRAMP
CMTS is authorized under the StateRAMP Moderate Baseline, ensuring compliance with the strict cybersecurity standards required by state and local governments. This certification guarantees that CMTS protects critical data while helping agencies manage cases efficiently and securely. With StateRAMP authorization, you can trust CMTS to meet your agency’s security needs, whether you opt for cloud or on-premise hosting.
CMMC
WingSwept is a CMMC Registered Practitioner Organization (RPO), supporting organizations in meeting the Department of Defense’s cybersecurity standards. While CMTS helps manage sensitive case data securely, WingSwept’s CMMC compliance ensures that our services meet stringent requirements for managing Controlled Unclassified Information (CUI) and other sensitive data, providing confidence for defense and government contractors.
SOC 2
WingSwept is SOC 2 Type II compliant, ensuring our organization maintains high standards of security, availability, and confidentiality. This means that when using CMTS, you can trust that your case management data is handled within a secure and compliant environment. SOC 2 Type II certification underscores our commitment to data protection and operational security across industries.
NIST 800-171
WingSwept adheres to NIST 800-171 guidelines for protecting Controlled Unclassified Information (CUI) in non-federal systems. With CMTS, organizations benefit from WingSwept’s commitment to maintaining these standards, ensuring sensitive data is secure throughout the case management lifecycle. Whether handling government contracts or securing internal data, CMTS supports compliance with NIST 800-171.
HIPAA
A Future-Focused Solution
CMTS is continuously developed to stay ahead of changes in technology and security requirements. This proactive approach helps your system remain secure and compliant as the digital landscape evolves.
A Future-Focused Solution
CMTS is continuously developed to stay ahead of changes in technology and security requirements. This proactive approach helps your system remain secure and compliant as the digital landscape evolves.
Frequently Asked Questions
How does CMTS ensure the security of sensitive case data?
CMTS was built with security as a top priority. It includes robust access controls, ensuring that only authorized personnel can view or edit sensitive data. Additionally, the system allows for granular control, such as restricting access to specific cases on a per-user basis, providing multiple layers of data protection.
Is the system modifiable based on my organization’s use of regulatory guidance?
Yes, CMTS is highly flexible and can be modified as your organization grows or changes. It includes a specific dropdown window for regulatory data, and can be tailored to meet your organization’s specific regulatory requirements.
Will I need to increase or create a significant IT support staff to maintain the system?
No. CMTS can be supported by your current system administrators with very little additional training, or by our staff if desired.
Does the intake service support anonymous submissions?
Yes, our online intake service allows for anonymous submissions. The form can be configured to meet your policies, workflow, and branding.
Are there restrictions on who has access to sensitive data?
Yes, CMTS was built with security in mind. It includes a robust system of access restrictions that allows you to control who can view sensitive data. You can also limit access to individual cases on a by-name basis if needed.
Is there a mandatory maintenance contract required for follow-up support?
No, a support contract is not mandatory, but we highly recommend it to ensure you have access to product upgrades and technical support.
Related Resources
CMTS Achieves FedRAMP® Moderate Baseline
IT services firm WingSwept, LLC is pleased to announce that the Case Management and Tracking System (CMTS) has been authorized under the Federal Risk and Authorization Management Program (FedRAMP®) Moderate Baseline, a standard set of security requirements for cloud services.
Ways to Accelerate Government Procurement
This is the story of four organizations that are customers of WingSwept’s Case Management & Tracking System (CMTS). All of these organizations are happily using the software, but they each took a different path to procuring the system. These are their stories…
CMTS Receives StateRAMP Authorization
WingSwept’s Case Management and Tracking System (CMTS) was authorized by StateRAMP Moderate Baseline, which is built on the National Institute of Standards and Technology Special Publication. WingSwept not only strives to ensure that CMTS is the best solution for agencies, but also that it has the easiest procurement path of any case management solution.
Live CMTS Demonstration
Schedule an informal Zoom meeting with us to see a live demonstration of CMTS tailored to your agency’s needs. We’ll share our screen and answer all your questions.