FedRAMP
-
Demand is finally pushing the cloud services cybersecurity program known as FedRAMP to develop standards for high impact systems. The Federal Risk Authorization and Management Program will send a draft baseline standard for FISMA high systems around the government for comment in the next month. Matt Goodrich, acting director of the FedRAMP program, tells Federal News Radio Executive Editor Jason Miller about the changes that are coming.
November 26, 2014 -
Keith Trippie, a former Senior Executive Service member executive director for the Enterprise System Development Office at DHS, pens an acquisition wish list for Santa.
October 17, 2014 -
The Council of Inspectors General analyzed 77 commercial cloud contracts across 19 civilian agencies and found most failed to implement federal guidance and best practices. Auditors found these shortcomings could put data and systems at a greater risk to cyber attack or data theft.
October 13, 2014 -
The Defense Information Systems Agency, which serves as the broker between Defense Department components and commercial providers of cloud computing services, says the certification standards it set for commercial providers may be too arduous for vendors. DoD also launched five pilots to test the use of commercial cloud providers and is reassessing how it develops cloud requirements.
August 21, 2014 -
Scott Gaydos, chief technologist, Federal Healthcare, U.S. Public Sector, HP Enterprise Services, discusses how his company can help your agency with its cloud initiatives. June 24, 2014
June 24, 2014 -
DISA is working with the services to identify a mission-critical application in the cloud to ensure the additional requirements for Level-3 security are appropriate and achievable. Meanwhile, the FedRAMP program office is beginning to consider what the program will look like in two to three to five years.
June 19, 2014 -
In this edition of Inside the Reporter's Notebook, Executive Editor Jason Miller shares news and buzz about the IT and acquisition communities.
June 06, 2014 -
In this edition of Inside the Reporter's Notebook, Executive Editor Jason Miller shares news and buzz about the IT and acquisition communities. GSA and SBA continue their ongoing quarrel over the Office Supplies 3 contract, and April marks the three-year anniversary of NSTIC's release.
April 28, 2014 -
David McClure of the General Services Administration announced Wednesday that he will leave the agency for the private sector. McClure is just one of many senior executives to recently leave federal service for the private sector.
April 17, 2014 -
DoD CIO Teri Takai clarifies the Pentagon plans to use the FedRAMP baseline. DHS and GSA are working together to ensure the continuous diagnostics and monitoring program and FedRAMP are aligned. But questions remain around how other cyber initiatives fit into the cloud security program.
April 03, 2014 -
In this week's Inside the Reporter's Notebook, Executive Editor Jason Miller explores how DoD is developing its cloud security standards and Treasury is filling a financial management void.
March 28, 2014 -
Agencies must use only cloud services that have been approved under the Federal Risk Authorization and Management Program (FedRAMP) by June. OMB will receive more details on agency progress with the latest quarterly update through PortfolioStat. Meanwhile, FedRAMP's security baseline will be revised this summer.
February 28, 2014 -
A new white paper from SafeGov recommended ways for agencies to move to an integrated cloud and cyber approach and away from one that is fragmented and ad hoc in many respects. Karen Evans, a co-author of the report and a former Office of Management and Budget administrator for e-government and IT, said agencies need a clearer picture of how this integration could happen.
January 23, 2014 -
The Defense Information Systems Agency says an eventual commercial cloud buy probably won't be bundled into a single contract vehicle, but in the meantime, DoD needs to work through challenges involving security, approval policy and network operations.
January 22, 2014 -
Alex Grohmann and John Dyson from the Northern Virginia Chapter of the Informations Systems Security Association, join host John Gilroy to talk about what you can do to make your agency more secure. July 9, 2013
July 08, 2013