Shows & Panels
- The 2014 Big Picture on Cyber Security
- AFCEA Answers
- Ask the CIO
- Building the Hybrid Cloud
- Connected Government: How to Build and Procure Network Services for the Future
- Continuing Diagnostics and Mitigation: Discussion of Progress and Next Steps
- Federal Executive Forum
- Federal Tech Talk
- The Future of Government Data Centers
- The Future of IT: How CIOs Can Enable the Service-Oriented Enterprise
- The Intersection: Where Technology Meets Transformation
- Maximizing ROI Through Data Center Consolidation
- Moving to the Cloud. What's the best approach for me
- Navigating Tough Choices in Government Cloud Computing
- The New Generation of Database
- Satellite Communications: Acquiring SATCOM in Tight Times
- Targeting Advanced Threats: Proven Methods from Detection through Remediation
- Transformative Technology: Desktop Virtualization in Government
- The Truth About IT Opex and Software Defined Networking
- Value of Health IT
- Air Traffic Management Transformation Report
- Cloud First Report
- General Dynamics IT Enterprise Center
- Gov Cloud Minute
- Government in Technology Series
- Homeland Security Cybersecurity Market Report
- National Cybersecurity Awareness Month
- Technology Insights
- The Cyber Security Report
- The Next Generation Cyber Security Experts
Shows & Panels
House panel gets cloud computing lowdown
Friday - 7/2/2010, 10:05am EDT
Federal News Radio
Federal agencies are under the gun to develop strategies for moving many of their IT functions into the cloud.
Rep. Edolphus Towns (D.-N.Y.), chairman of the House Oversight and Government Reform Committee, recognizes that moving the federal government to cloud computing may take as long as a decade and says his job is to see to it that risks and benefits are thoroughly weighed and balanced.
"It's clear to me that security and privacy are real concerns," Towns said in his opening statement. "Our natural impulse is to hold the things we value close to us, but cloud computing requires entrusting data to others."
Towns acknowledges that in the long run, the government could also save money by using cloud computing. But the ranking Republican on the panel, Darrell Issa of California, says he doesn't believe cost savings will be the only factor in moving federal government IT into the cloud.
"I'm interested in seeing how companies believe they can provide guaranteed security in a cloud environment," he said.
White House Federal CIO Vivek Kundra came to offer an update on the effort to move federal agencies into the cloud, offering a somewhat dramatic graphic to underscore the urgency and the need for the change:
Unfortunately, the number of data centers in the United States Government has gone from 482 to over 1,100 in over a decade. While in the private sector, IBM went from 282 data centers to 12. That's not sustainable in the long term.
The Government Accountability Office released a study at yesterday's hearing that, on the one hand, talked up the potential benefits of cloud computing, but warned that a viable game plan for its implementation is still needed.
Greg Wilshusen, who directs Information Security Issues for the GAO, testified, "22 of 24 major federal agencies reported that they are either concerned or very concerned about the potential information security risks associated with cloud computing."
Kundra says federal agencies face an end-of-year deadline to map out their strategies for migrating their computing needs to the cloud.
"By this December, agencies have been directed by OMB to come up with roadmaps and plans on how they are going to consolidate" to cloud computing, he told the committee.
One of the challenges of developing that guidance on cloud computing is trying to meet the individual, and sometimes differing, security needs of the agencies. To that end, Dave McClure, Associate Administrator in the Office of Citizen Services and Innovative Technologies at the General Services Administration talked about an inter-agency effort to develop a common set of security standards.
The Federal CIO, our cloud PMO (project management office), the CIO council, which has a security working group, and NIST have come together... We have come up with a process and corresponding security controls that have been agreed to by multiple agencies. We're calling this program FEDRAMP. It provides a government-wide risk management approach for enterprise-level IT systems. It will enable agencies to either use or leverage existing security authorizatitons.
Some of companies who will very likely be competing for contracts to provide cloud computing services to the federal government, such as Microsoft, Google, EMC Federal, and Salesforce.com, also testified at yesterday's first oversight hearing into cloud computing by the House Oversight Committee.
(Copyright 2010 by FederalNewsRadio.com. All Rights Reserved.)