Helping Government Agencies Keep Customer Information Secure

The General Services Administration (GSA) needed a way to keep the personal information of their more than 30 million customers safe—while making the log-in process as easy and painless as possible. In the past, government users had to create multiple logins for various agencies. The GSA hoped to streamline this by allowing for one ID that could access multiple sites, while still meeting NIST standards for identity-access levels. Here’s how the Enquizit team helped the GSA hit their goals:

  • DevSecOps
    Enquizit integrated a DevSecOps approach to build and scale the GSA’s new application quickly. This included using automation to support monitoring of the overall system and ensuring an easy, graceful recovery should any problems arise. The automation also freed up the engineers’ time, as they no longer had to manage the routine work that AI was better able to handle.

  • Anonymization
    If a hacker breaks the password of one user, it’s critical that they cannot access the other 30 million. Enquizit provided expertise and best practices for “anonymizing” user data by implementing security platforms like Macie, Guard Duty, WAF, and rotating KMS keys (dual encrypted). The end result? The system is so secure that even Congress cannot access the names in the system. Only the user’s password can unlock the PII, meaning that all of your private information is safe.

  • IAL2 compliance
    The GSA wanted to make their system extra secure by moving beyond a simple password login to reach Identity Assurance Level 2 (IAL2) compliance, which asks users to verify their identity. But IAL2-compliant systems could often be clunky or slow. Enquizit built a system that would verify users’ identity through a simple upload of their driver’s license—a process that was both secure and easy to use.

  • Human-centered design
    As experts in human-centered design, Enquizit has a process for incorporating user perspective into every project. When the GSA asked Enquizit to support them on UX, the Enquizit team helped them develop UX content, including How-to and FAQ guides, in user-friendly language that regular consumers could understand.

Enquizit’s team was originally chosen for their deep knowledge of AWS tools, but as the project developed, the GSA tapped them for extra help with DevSecOps, project management and communication, and UX. Today, more than 20 government agencies are using the login tool—and the scalability of the solution means that it can easily grow to serve even more. To find out more about Enquizit’s work with the GSA, read the full case study here Making Logins Simpler for the GSA How Enquizit Helped the Federal Government Build a Shared Authentication Platform

 
You may also like...
Enquizit’s Merger With CDW Means End-to-End IT Performance for Customers
Blogs
Blogs
Enquizit’s Merger With CDW Means End-to-End IT Performance for Customers
Blogs
Blogs

For more than 40 years, customers have trusted CDW to deliver exceptional hardware, maintenance, and technology services. Following our merger with CDW, Enquizit’s clients will now be able to tap into deeper resources, including R&D innovation labs and hybrid cloud solutions. Meanwhile, CDW’s customers can now leverage Enquizit’s long history of helping clients solve problems via the cloud.

Read More →
Blogs
Blogs
Demystifying Artificial Intelligence: 3 Use Cases for the Public Sector and Higher Education
Blogs
Blogs
Demystifying Artificial Intelligence: 3 Use Cases for the Public Sector and Higher Education
Blogs
Blogs

Over the past year, the artificial intelligence (AI) phenomenon has taken the world by storm. Almost overnight, hundreds of millions of users were tapping into a host of AI-powered applications to write cover letters, receive tutoring assistance, make appointments, speed up customer service, detect cybersecurity threats, and more. Some analysts have even referred to AI as the “fourth industrial revolution,” parallel to the development of the internet itself.

Read More →
Blogs
Blogs
Is Your IT Project “Shutdown Proof?” 5 Ways Agencies Can Plan Ahead for a Government Shutdown
Blogs
Blogs
Is Your IT Project “Shutdown Proof?” 5 Ways Agencies Can Plan Ahead for a Government Shutdown
Blogs
Blogs

The reality is that shutdowns are now an unpleasant feature of government work. Since the first U.S. government shutdown in 1981, shutdowns have occurred about every four years. Similarly, public sector IT projects take an average of 3.9 years to complete. As such, there’s a high chance that any team working on an IT project within the federal government will experience a shutdown that will threaten the project’s timeline and budget.

Read More →
Blogs
Blogs
BlogsHanna Oh