EnDyna supports its clients’ programs with a variety of cybersecurity solutions, including vulnerability assessments, penetration testing, and cyber risk management. We use the latest tools and platforms to provide a wide range of services in a secure environment.
EnDyna uses a pro-active approach to provide digital solutions, including comprehensive web services, custom
design and development to maximize productivity, minimize down-time, and provide streamlined resolution to technology challenges.
Corporate Capabilities
Vulnerability Assessments/Penetration Testing
Preventing unauthorized access to and criminal use of networks is crucial to protecting our nation’s critical infrastructure and military systems. If hackers got unauthorized access to information systems, they could steal sensitive secrets or alter code to do serious damage to national security. Preventing hackers from gaining unauthorized access to information systems includes identifying and fixing vulnerabilities.
EnDyna performs systematic reviews of security weaknesses in information systems to evaluate if systems are susceptible to any known vulnerabilities. If so, we assign severity levels to those vulnerabilities, and recommend remediation or mitigation.
EnDyna performs penetration testing (pentest) – known as “ethical hacking” (an authorized simulated cyberattack on a computer system) to evaluate the security of the system and to identify weaknesses, including the potential for unauthorized parties to gain access to the system's features and data, as well as strengths.
EnDyna also provides access to a proprietary SaaS platform, which facilitates the submission and tracking of vulnerabilities discovered in internet-accessible information systems. This Platform provides the ability to provide financial incentives (termed “bug bounties”) for valid submissions. Platform support services also includes robust platform reporting, effectively securing the platform, and managing the administration and operation of the platform, including its security.
Cyber Risk Management
EnDyna provides a robust cyber risk management program to preserve the integrity of information and corporate intangible assets and ensure minimal loss. Keeping web applications, source code and embedded software. A few examples of customers’ losses – which can be prevented with effective vulnerability assessments - include:
- Firewall Providers: Breach of security due to malfunction in the software.
- Software Providers: Damages that are caused due to software malfunction.
- Website Owners: Misuse of copyrighted material.
- Network Owners: Hacker actions that cause
loss of funds and negatively
affects both systems usage and reputation . - Custodians of Confidential Data: Civil action
due to unauthorized release of data protected by privacy laws.
Information Security (INFOSEC)
EnDyna helps protect information by mitigating information risks by preventing or reducing the probability of unauthorized or inappropriate access to data, or the unlawful use, disclosure, disruption, deletion, corruption, modification, inspection, recording or devaluation of information. Protected information may take any form, e.g. electronic or physical, tangible or intangible. Information security's primary focus is the balanced protection of the confidentiality, integrity and availability of data while maintaining a focus on efficient policy implementation, all without hampering organization productivity. In addition, EnDyna provides comprehensive support to facility and personnel security clearances.
Accessibility of Electronic Documents
EnDyna is firmly committed to accessibility standards – such as Section 508 Compliance – and web-based eLearning interoperability standards, including the Shareable Content Object Reference Model (SCORM). EnDyna is skilled in producing materials that comply with Section 508 of the Rehabilitation Act of 1973.
Artificial Intelligence/Machine Learning
EnDyna develops and creates intelligent Machine Learning (ML) systems for short term predictions. We can process numerical data in static or streaming form. In addition, we can use Natural Language Processing (NLP).
Website and Database Development
EnDyna develops websites and databases using the latest industry standard technologies and platforms. We continually update and maintain content, events, news, and photos on public-facing websites and internal intranets and ensure content complies with government security protocol requirements.
Health IT
Health IT – at the intersection of IT and Healthcare – involves the design, development, creation, use, and maintenance of information systems for the healthcare industry and healthcare industry related government agencies. In support of biomedical research, health sciences, and healthcare, EnDyna performs studies and analyses; provides operational, technical, and maintenance services for the systems, subsystems, and equipment.
Data Management and Analysis
EnDyna provides data management and analysis support, including conducting comprehensive evaluations and trend analyses, and other activities that are critical in reporting progress, assessing program value, and setting future direction. We also see this work as critical in providing insights into how programs can be improved-and which specific actions have to be taken.
Dashboards and Tools
EnDyna custom develops applications, dashboards, and other eTools to maximize efficiency and productivity across its prime contracts. Using industry standards and best practices, EnDyna robust (and award-winning) web applications, tools, and dashboards, are fully customized to fit client missions and programs.
Project Experience
EnDyna will provide CISA and participating Federal Civilian Executive Branch (FCEB) agencies access to an existing, commercially available SaaS platform, which will facilitate the submission and tracking of vulnerabilities discovered in internet-accessible information systems, termed FCEB systems, of the FCEB agencies, including Independent Agencies and all Boards, Commissions, and Committees (Chief Financial Officers (CFO) ACT and Non-CFO Act Agencies). In addition, as an optional functionality, the platform will provide agencies the ability to provide financial incentives (termed “bug bounties”) for valid submissions. EnDyna will provide the Government with project management support services including robust platform reporting, effectively securing the platform, and managing the administration and operation of the platform, including its security. Participation in the platform will be voluntary for FCEB agencies, and therefore the platform can support a varying number of agencies at any time.
Under subcontract to Bugcrowd, Inc., EnDyna is conducting crowdsourced vulnerability discovery and disclosure (CVDD) services across the full range of networks, systems, and information, including web applications, software, source code, and software-embedded devices across the whole Department of Defense.
EnDyna provides independent environmental Compliance and Environmental Management System (EMS) auditing and consulting services at a number of NIH locations nationwide. EnDyna conducts environmental compliance and EMS audits at those sites every two years to ensure all non-compliance issues have been resolved. As part of this work, EnDyna developed a web-based, online training module to train compliance officers to develop and maintain their Spill Prevention Control and Countermeasure (SPCC) plans.
EnDyna custom developed a web-based application audit tool, EnDyna-RegC, which is used to track progress in compliance and implementation of Corrective Action Plans (CAPs). EnDyna-RegC is a database tracking and reporting tool that can be used easily on laptops and tablets and can be made available online. The protocols and checklists used in this system are consistent with the latest version of the US Army Corps of Engineer’s The Environmental Assessment and Management Guide (TEAM Guide), along with applicable District and State Supplement. To prepare for an audit, EnDyna develops an Audit Plan that includes the audit scope, audit criteria, audit schedule, audit methodology, and identification of audit team members. The scope of the audit identifies the operations and programs to be evaluated (e.g., tanks, power plant, air program, etc.). The audit criteria are the requirements against which the operations and programs are assessed (regulations, permits, ISO 14001, etc.). These requirements are loaded into EnDyna’s own developed Dynamic Environmental Regulatory Compliance Tool, EnDyna-RegC, a Microsoft Excel-based database tracking and reporting tool that can be used easily on laptops and tablets and can be made available online. The protocols and checklists used in this system are consistent with the latest TEAM Guide and any updates to the state and local regulations.
Under this prime contract, EnDyna provided technical and strategic expertise in the development of a web-based Health IT tool entitled Substances of Concern (SoC) Reduction Tool Kit. This tool kit – which was honored with the White House GreenGov “Green Innovation Award” – supports the sustainable procurement of products and chemicals by creating a peer-to-peer learning framework that provides strategies for safer alternatives.
On-site at Ft. Detrick, Maryland, EnDyna’s public affairs, communications, and design personnel assisted with the development, organization, dissemination, and information management of various health communication materials for the TATRC lab, to include multimedia, print, social media, web design and maintenance, and meeting and event support.
Under subcontract to Riva Solutions, EnDyna provides on-site personnel to perform and review entries in the Joint Personnel Adjudication System (JPAS), the NBIB Central Verification System (CVS), Electronic Questionnaire for Investigations Processing (e-QIP), and related databases. The Government uses Microsoft Windows based operating system (currently Windows 10) with the Microsoft Office Suite (Word, Excel, PowerPoint, etc.). EnDyna staff conducts reviews of security questionnaires and provides feedback to Applicants completing these documents through both electronic mail (e-mail) and verbal (telephonic) communication methods. The basic service objective is to perform management and personnel security/suitability background investigation submission support. Success is defined as 100% of investigation requests submitted to the PSI-CoE being processed with one of two (2) outcomes: (1) all unneeded or incomplete investigation requests are closed and/or cancelled; and (2) all required and completed investigation requests are submitted to and accepted by the investigative service provider (ISP). The current ISP is the Office of Personnel Management (OPM) National Background Investigation Bureau (NBIB).
Every year, dozens of workers die and thousands more become ill while working in extreme heat or humid conditions. There are a range of heat illnesses and they can affect anyone, regardless of age or physical condition. As part of OSHA's Heat Illness Prevention campaign, launched in 2011, EnDyna provided all personnel, equipment, tools, materials, supervision, and used the highest applicable industry standards for sound secure software development practices to develop the OSHA Heat Safety mobile application for Android. Services provided included: development, maintenance, and continuous improvement of mobile app designed to run on the Android platform. Because this application was intended for the public and related to occupational health and safety, EnDyna was also asked to develop the Spanish language equivalent of the application to expand applicability. EnDyna was also prepared to provide updates to the application, as needed. EnDyna also developed and maintained a quality control program to ensure services were performed in accordance with OSHA’s requirements, for which we developed and implemented procedures to identify, prevent, and ensure non-recurrence of defective services. EnDyna’s quality control program was the means to assure that work completed complies with the requirement of the contract.
Every year, dozens of workers die and thousands more become ill while working in extreme heat or humid conditions. There are a range of heat illnesses and they can affect anyone, regardless of age or physical condition. As part of OSHA's Heat Illness Prevention campaign, launched in 2011, EnDyna provided all personnel, equipment, tools, materials, supervision, and used the highest applicable industry standards for sound secure software development practices to develop the OSHA Heat Safety mobile application for Android. Services provided included: development, maintenance, and continuous improvement of mobile app designed to run on the Android platform. Because this application was intended for the public and related to occupational health and safety, EnDyna was also asked to develop the Spanish language equivalent of the application to expand applicability. EnDyna was also prepared to provide updates to the application, as needed. EnDyna also developed and maintained a quality control program to ensure services were performed in accordance with OSHA’s requirements, for which we developed and implemented procedures to identify, prevent, and ensure non-recurrence of defective services. EnDyna’s quality control program was the means to assure that work completed complies with the requirement of the contract.
The Federal Bureau of Prisons (BOP) is responsible for the care and custody of more than 165,000 inmates located in more than 112 facilities. The Health Services Division (HSD) provides essential health care services to these inmates, consistent with community standards. BOP is responsible for creating and maintaining an accurate medical record which is consistent with the standards of the Joint Commission on the Accreditation of Health Care Organizations (JCAHO). Within that context, BOP is developing and implementing an Electronic Medical Record (EMR) system. Under this contract, EnDyna Inc. will provide the computer software and services necessary to enhance and continue implementation of the EMR system developed by Advanced Technology Group (ATG).
GSA's Office of Small Business Utilization (OSBU) advocates for small, small disadvantaged, veteran, service-disabled veteran-owned, HUBZone, and women business owners. Its mission is to promote increased access to GSA's nationwide procurement opportunities. EnDyna was commissioned by GSA's OSBU to create a functional prototype of a dashboard, which automatically tracks Small Disadvantaged Business Utilization (SDBU) to track numerical utilization of small businesses - by regional office and fiscal year. The utilization data would then be provided to the respective regional and other offices responsible. EnDyna provided 15 user licenses of a functional prototype software Dashboard (hereinafter called Dashboard) which extracts data from the public Federal Procurement Data System (FPDS) database and consolidates the data and generates the pre-configured GSA OSBU dashboard.
Using a similar framework for the Dashboard created for the GSA OSBU, EnDyna also developed a Dashboard for USAID’s OSDBU. EnDyna created a functional dashboard, which automatically tracks small disadvantaged business utilization (SDBU) to track numerical utilization of small businesses - by regional office and fiscal year. The utilization data would then be provided to the respective regional and other offices responsible. EnDyna provided 15 user licenses of a functional prototype software Dashboard (hereinafter called Dashboard) which extracts data from the public Federal Procurement Data System (FPDS) database and consolidates the data and generates the pre-configured USAID OSBU dashboard.