What is SIGNAL?

SIGNAL is a scheduling tool powered by the batCAVE platform built to simplify scheduling for ISPG’s core security and privacy services. SIGNAL captures cybersecurity and compliance scheduling activities on a user-friendly interface for CMS users throughout the enterprise. You can use SIGNAL to schedule your system’s Cybersecurity Risk Assessment Program (CSRAP) and Penetration Test (PenTest). Scheduling activities include but are not limited to: 

• Scheduling assessments (initial scheduling, rescheduling)
• Tracking assessment statuses 
• Assessment management 
• Planning for both present and future assessments

All System/Business Owners and Information Systems Security Officers (ISSOs) must ensure they have access to SIGNAL for future assessment scheduling and management. To use SIGNAL, you must meet the following pre-qualifications: 

• Have a defined user role
• Have access to the CMS Intranet / CloudVPN
• Use the Google Chrome browser to access (recommended)
• Have an existing EUA (Enterprise User Administration) ID
• Have the corresponding job codes: the SIGNAL job code (SIGNAL_USER_PRD) and the VPN job codes (CMS_CLOUD_ACCESS, plus one of the following: NON_CMS_EMP_VPN for contractors or those without GFEs, or CTR_VPN_PIV_INTERNAL_GFE for those with GFEs)