Hubbard Radio Washington DC, LLC. All rights reserved. This website is not intended for users located within the European Economic Area.
DoD’s new guidance clarifies what FedRAMP equivalency means and requires cloud service providers handling controlled unclassified information to get a letter of attestation from a third-party organization that says they meet the FedRAMP Moderate baseline standards without plans of action and milestones.
An update to the long-running cloud-computing security program known as FedRAMP, has entered a new phase. Comments closed Friday, and now the authorities at the General Services Administration and Office of Management and Budget are percolating.
FedRAMP plays a vital role in ensuring the government can operate and innovate securely, and it faces a busy year of restructuring on the road to efficiency that meets modern demands. Federal agencies should join that ride to become champions of innovation instead of captives of compliance. Automation is the highway to progress on that journey, and OSCAL is its fast-speed lane.
Six federal and industry experts praised OMB’s revamped cloud security memo for leaning in on automation and modernizing the Joint Authorization Board concept.
Ann Lewis, the new director of TTS in GSA’s Federal Acquisition Service, said her organization’s goal is to get the right tech skills into the right place to deliver better outcomes for the public.
Drew Myklegard, the deputy federal chief information officer, said the draft memo to update FedRAMP creates a new oversight board and promotes agencies from similar sectors working together approve cloud services.
Almost everything the government buys in the future could look like cybersecurity with some other product attached, if new proposed rules from the Federal Acquisition Regulation council take effect early next year. That's more a matter of when than if. Attorney Townsend Bourne, a partner at Sheppard Mullin, has read the proposed rules and joins Federal Drive host Tom Temin for this discussion.
Changes mandated by the bold and encompassing executive order to transform federal customer experience and service delivery in the U.S. are becoming more visible. It’s been about a year since $100 million of the Technology Modernization Fund was publicly directed to projects that cut red tape for both citizens and government employees.
The acquisition rules stem from recent cyber incidents like the SolarWinds breach.
Tom Voshell, vice president, Federal Program Office at Coupa Software, joins host Roger Waldron on this week's Off the Shelf to discuss data management and cyber security with a focus on the Department of Defense’s upcoming release and implementation of an updated version of its Cybersecurity Maturity Model Certification (CMMC 2.0).
The NIST project is evolving as agencies look to more quickly adopt software while complying with security and privacy frameworks.
The current cybersecurity compliance landscape may seem daunting to the average government contractor, particularly if you are in a start-up phase or of small or mid-sized stature. But by finding yourself here, you’re already taking the first step. By breaking your compliance efforts into smaller digestible chunks and by not reinventing the wheel, you are better positioning your organization for success come late 2024
Hansang Bae, Public Sector chief technologist for Zscaler, joins host Mark Amtower on this week's Amtower Off Center to discuss zero trust, and why its adoption has been so slow.
Artificial intelligence has become an essential tool in our daily lives and has fundamentally altered the ways in which we communicate and work with one another.