The Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency issued interim Trusted Internet Connections 3.0 telework guidance and Stephen Kovac, vice president of global government at Zscaler, said the document requires cloud service providers to submit telemetry data to the National Cybersecurity Protection System’s EINSTEIN team, FedScoop reported Thursday.
Read More »Forcepoint’s Eric Trexler on Three Strategies Agencies Should Adopt to Protect Data in Public Cloud
Eric Trexler, vice president of global governments and critical infrastructure at Forcepoint, wrote in a Nextgov article published Tuesday that there are three strategies federal agencies should implement to secure data in the public cloud and the first one calls for agency leaders to understand that cloud providers are not responsible for data protection.
Read More »ManTech’s Sandeep Shilawat: Federal Agencies Need Industry Partnership to Measure Cloud’s Economic Benefits
Sandeep Shilawat, executive director for cloud and DevOps at ManTech International, wrote in a Forbes article published Tuesday that the federal government should implement a mechanism in the budgeting process to allow program managers to reuse cloud adoption-related cost savings.
Read More »ECS’ John Sankovich: Managed Service Providers Could Help Facilitate Cloud Adoption
John Sankovich, vice president of cloud solutions at ECS, said in an interview published Tuesday that organizations should partner with a managed service provider to help train their employees when it comes to cloud adoption.
Read More »Deloitte’s Scott Buchholz on Potential Benefits of Serverless Computing Model to Agencies
Federal agencies seeking to advance automation when it comes to their information technology functions should consider adopting serverless computing architectures, FedTech reported Monday. Scott Buchholz, chief technology officer for Deloitte’s government and public services practice, said serverless computing offers benefits to agencies and one of those is reduced cost.
Read More »Coalfire’s Michael Carter: House Bill Aims to Address Redundant Assessments Under FedRAMP
Michael Carter, vice president of the Federal Risk and Authorization Management Program and assurance services at Coalfire, has said Reps. Gerry Connolly (D-Va.) and Mark Meadows (R-N.C.) introduced in July a bill that would propose changes to FedRAMP. “Overall, the key benefits of the legislation, from our view, include improved efficiency …
Read More »ManTech Launches Purdue University Global’s Cloud Degree Program for Employees; Kevin Phillips Quoted
ManTech International has teamed up with Purdue University Global to offer a cloud computing degree program to its employees. “We see strong synergy between this exciting new cloud computing education program and our bachelor’s and master’s degree programs in cyber launched in 2017,” Kevin Phillips, ManTech president and CEO, said …
Read More »DoD Seeks Industry Questions About Revised JEDI Cloud RFP
The Defense Department has launched a second round of comment period for industry to submit questions about DoD’s revised request for proposals for the Joint Enterprise Defense Infrastructure cloud procurement program, Nextgov reported Friday. A FedBizOpps notice posted Thursday says cloud service providers should send their questions about the amended …
Read More »Telos Launches Platform Template for Automated FedRAMP Compliance
Telos has developed a template designed to automate processes for compliance with the Federal Risk and Authorization Management Program. The company said Tuesday the template issued through its Xacta 360 platform will cover FedRAMP required documentation that includes project registration, assessment, authorization and monitoring. The template is based on authorization …
Read More »VMware’s Bill Rowan: Agencies Need Exit Strategy to Streamline Transition Across Multiple Cloud Services
Bill Rowan, vice president of federal sales at VMware, told MeriTalk in an interview published Tuesday that federal agencies should have an exit strategy that would enable them to transition applications from one cloud service provider to another in order to facilitate the migration process and minimize disruption. “Every time I move from …
Read More »Securityminders’ George Moraetes: Risk Assessment Could Help Evaluate Cloud Providers for FedRAMP Compliance
George Moraetes, vice president, chief security officer and architect at Securityminders, has said federal agencies should take several measures to evaluate cloud service providers for compliance with the Federal Risk and Authorization Management Program and one of those is through cloud risk assessment. Moraetes wrote in a guest piece published Thursday on …
Read More »Continuum GRC Seeks to Facilitate FedRAMP Compliance With Cloud-Based Audit Tool
Continuum GRC has introduced an auditing platform designed to help cloud service providers comply with the Federal Risk and Authorization Management Program at a reduced cost. The company said Wednesday its IT Audit Machine works to help CSPs come up with a security system plan that details the security controls …
Read More »Dell EMC’s Cameron Chehreh: FedRAMP Should Continue Evolution Toward ‘Accelerated Process’
Cameron Chehreh, chief technology officer of Dell EMC’s federal business, has said he believes the Federal Risk and Authorization Management Program should continue to streamline and play a role as government agencies work to advance their digital modernization efforts. “The goal is to get to a point where a vendor holding one …
Read More »CSA, Onapsis Launch New Working Group to Ensure ERP App Cloud Migration Security
Onapsis and the Cloud Security Alliance have formed a new working group to oversee the development of best practices designed to help organizations securely move Oracle, SAP and other enterprise resource planning applications to the cloud. CSA and Onapsis said Thursday they will work with chief information security officers from …
Read More »Oracle’s Mark Johnson: Agencies Should Consider End-to-End App Security Tools in Cloud Transition
Mark Johnson, director of modern platform for government at Oracle, has said that agencies should consider three factors before moving information technology systems to the cloud and one of them is to adopt end-to-end security platforms. Johnson wrote in an FCW commentary piece published Friday that such security tools should work to …
Read More »