JAMIS Software

Search Icon View Demo

MENUMENU
  • Products
        • JAMIS Prime ERPProduct Overview
          • Project Accounting & FinanceCost Accounting For Government Contractors
          • Time and Expense ManagementTimesheets, Time Off Management, and Expense Reporting
          • Customer Relationship Management (CRM)Opportunity Lifecycle Management
          • Asset ManagementFixed Assets, Depreciation, and Government Property Management
          • Contract ManagementContract Lifecycle Management
          • Business Planning SuiteBid & Proposal, Budgeting, and Forecasting
          • Distribution ManagementRequisitions, Purchasing, and Inventory Management
          • Dashboards & Business IntelligenceReal-time Reporting, Inquiries, & Dashboards
        • JAMIS HCMProduct Overview
          • Human Resources ManagementHR, Recruiting, Onboarding, Benefits, Compensation, and Learning
          • Payroll ManagementDomestic & International Payroll, & Outsourced Tax Services
        • Industry Specific EditionsProduct Overview
          • Manufacturing EditionProject Manufacturing built for federal government contractors
          • Nonprofit EditionGrant management for federally-funded nonprofits.
        • Company Size
          • Small Business
          • Enterprise BusinessScalable and full-featured solutions for mid-to-large organizations.
  • Services
    • Implementation Services & Consulting
    • Customer Support
    • JET - JAMIS Education & Training
    • JAMIS Cloud Services
    • System Customization
  • Resources
        • Get the JAMIS edge in Government Contracting

          JAMIS is a true cloud ERP system that breaks down barriers and helps drive collaboration and knowledge-sharing across your organization, so your people can do what they do best.

          Why JAMIS?
          DCAA Compliance
          Security

          Resources
          • Webinars & Videos mega menu arrow
          • Whitepapers mega menu arrow
          • Prime Insights Blog mega menu arrow
          • Datasheets mega menu arrow
          • Customers mega menu arrow
          FEATURED CONTENT
          JAMIS Prime 7.0 Release

          JAMIS Prime 9.0 Release

          JAMIS Software Corporation announces the launch of Version 9.0, delivering major enhancements in financials, manufacturing, mobility, and cybersecurity to help customers boost efficiency, collaboration, and control.

          Learn more mega menu arrow

  • Events
    • GovCon Webinar Series
  • Company
    • About JAMIS
    • Company News
    • Management Team
    • Partners & Affiliates
    • Careers
    • Office Locations
  • Contact Us

Transparency in ERP Security and Industry Expertise

Posted by JAMIS Software on January 12, 2021

Author: Jake Nix, vCISO, JAMIS

At JAMIS Software, we understand the unique requirements of tracking and managing government contracts. Our expertise extends beyond delivering our world class solution and includes understanding and helping our customers, and end-users navigate the complex government contracting and compliance environment.

The government compliance space can be confusing and challenging to navigate with the various requirements that are based on several factors, some of which include: Your organization’s relationship with the United States Government:

  • Are you a prime or sub-contractor;
  • Are you providing a service or a product;

Do you maintain (store, process, or transmit) covered data within your systems, or within 3rd party systems you use (such as JAMIS Prime). Types of covered data can include:

  • Federal Contract Information (FCI);
  • Confidential Unclassified Information (CUI);
  • Covered Defense Information (CDI);
  • Other more sensitive types, including classified information, etc.

While there are additional considerations that we can help you think through, most government prime and sub-contractors either hold FCI or CUI. Assuming the contractors are providing a service to the government (either directly or on behalf of a prime) this requires compliance with certain cybersecurity frameworks or standards, such as NIST 800-171, NIST 800-53 (FISMA), FedRAMP, and eventually some will require CMMC compliance as the phased rollout continues, specifically for DoD contracts.

There are many solutions out there that tout they use a FedRAMP Authorized Cloud Services Provider, such as Amazon Web Services (AWS). Thus they are compliant with FedRAMP requirements. This practice can create confusion in multiple ways; the first and most important is the distinction that maintaining your product or service on a FedRAMP authorized hosting provider does not inherently make your solution FedRAMP compliant. It can help make the authorization process easier for companies, but it does not, in itself, provide authorization. Be sure to check the FedRAMP marketplace to verify who is in-fact FedRAMP authorized.

Second, and of similar importance, compliance with certain standards like FedRAMP, for instance, can reduce the flexibility of a solution and increase cost. While Cybersecurity hygiene is critical, there must be a balance between risk and cost, and that is why there are different regulations and standards within the government space that are commensurate with the risk related to the data being processed, stored, or transmitted.

At JAMIS, we understand our role in this complex environment and the importance of communicating government requirements clearly and transparently. JAMIS has shown a commitment to security and compliance, exhibited through performing independent annual external audits to determine compliance with NIST 800-171 with a FedRAMP Accredited 3PAO (Third-Party Assessor). We have also undergone a CMMC readiness assessment to ensure we have the tools and plans necessary to support clients as this new requirement is formally rolled out.

JAMIS also provides the flexibility of allowing our customers’ instance of JAMIS Prime and their data to be hosted in the FedRAMP Authorized AWS Cloud, or within a leading practice, SOC 2 assessed Data Center – Zayo. Regardless of the data center used, JAMIS will perform their leading practice evaluation Vulnerability and Threat Management Standard as described in our previous post.

We hope this blog has helped provide you with some concise and transparent information around the government contracting and compliance environment and the requirements you may face, and how we will be able to help support them. At JAMIS, we believe in being your trusted partner in the government contracting world. Not only by providing a best-in-class solution, but also by being an open and educational partner in how we help support all aspects of the contracting process. 

Topics: Blog

Welcome!

Previous Posts:

Turn Your Financial Data Into Useful Business Insights

3 Key ERP Automation Tools That Can Improve Operational Efficiency and Decision Making

Production Costing with Production Orders – Understanding True Profitability for GovCon Manufacturers

JAMIS Bill of Material / CAD Integration

facebook twitter youtube linkedin
Copyright © 2023 JAMIS Software Corporation. All rights reserved.
JAMIS Headquarters | 6688 Gunpark Drive, 2nd Floor, Boulder, Colorado 80301
Legal | Sitemap
This website uses cookies to improve your experience. We'll assume you're ok with this, but you can opt-out if you wish. Accept Reject
Privacy & Cookies Policy

Privacy Overview

This website uses cookies to improve your experience while you navigate through the website. Out of these cookies, the cookies that are categorized as necessary are stored on your browser as they are essential for the working of basic functionalities of the website. We also use third-party cookies that help us analyze and understand how you use this website. These cookies will be stored in your browser only with your consent. You also have the option to opt-out of these cookies. But opting out of some of these cookies may have an effect on your browsing experience.
Necessary
Always Enabled
Necessary cookies are absolutely essential for the website to function properly. This category only includes cookies that ensures basic functionalities and security features of the website. These cookies do not store any personal information.
Non-necessary
Any cookies that may not be particularly necessary for the website to function and is used specifically to collect user personal data via analytics, ads, other embedded contents are termed as non-necessary cookies. It is mandatory to procure user consent prior to running these cookies on your website.
SAVE & ACCEPT