The U.S. Department of Defense has given Fujifilm’s Synapse PACS the green light to operate on the department’s networks, granting the company an Authority to Operate (ATO) and making it the first medical-imaging vendor to obtain such clearance since DoD switched to its Risk Management Framework (RMF), according to a press release sent by Fujifilm Medical Systems USA.
DoD first announced it would be transitioning from its traditional DIACAP process for such authorization (the acronym stands for DoD Information Assurance Certification and Accreditation Process) in 2014.
The department has spent the past year implementing the change, and the new process entails myriad details and generally takes over a year to complete, Fujifilm notes.
“The Risk Management Framework provides a process that integrates security and risk management activities into the system development life cycle,” the company states, adding that the risk-based approach to security control selection and specification considers numerous factors, including constraints due to applicable laws, directives, executive orders, policies, standards and regulations.
Fujifilm COO Johann Fernando, PhD, says this particular ATO is “an unprecedented achievement in that our technology had to stand up to the rigors of a brand new risk management framework process recently implemented by the Department of Defense.”
“We look forward to our continued strong relationship with the DoD,” adds Bill Lacy, the company’s VP of medical informatics.
The new ATO granted to Fujifilm is effective until March 2020.