Shows & Panels
- The 2014 Big Picture on Cyber Security
- AFCEA Answers
- Ask the CIO
- Building the Hybrid Cloud
- Connected Government: How to Build and Procure Network Services for the Future
- Continuing Diagnostics and Mitigation: Discussion of Progress and Next Steps
- Federal Executive Forum
- Federal Tech Talk
- The Future of Government Data Centers
- The Future of IT: How CIOs Can Enable the Service-Oriented Enterprise
- The Intersection: Where Technology Meets Transformation
- Maximizing ROI Through Data Center Consolidation
- Mitigating Insider Threats in Virtual & Cloud Environments
- Modern Mission Critical Series
- Moving to the Cloud. What's the best approach for me
- Navigating Tough Choices in Government Cloud Computing
- The New Generation of Database
- Satellite Communications: Acquiring SATCOM in Tight Times
- Targeting Advanced Threats: Proven Methods from Detection through Remediation
- Transformative Technology: Desktop Virtualization in Government
- The Truth About IT Opex and Software Defined Networking
- Value of Health IT
- Air Traffic Management Transformation Report
- Cloud First Report
- General Dynamics IT Enterprise Center
- Gov Cloud Minute
- Government in Technology Series
- Homeland Security Cybersecurity Market Report
- National Cybersecurity Awareness Month
- Technology Insights
- The Cyber Security Report
- The Next Generation Cyber Security Experts
Shows & Panels
David Rubal, Public Sector Pre-Sales Consulting Manager with Tableau Software, will discuss how his company is helping agencies analyze and process big data.
August 12, 2014
Bajinder Paul, the Federal Trade Commission CIO, said a new modernization roadmap will bring operational capabilities to employees, aggregate policies and major acquisition initiatives across the agency and, most importantly, create a path for innovation.
The Defense Strategies Institute will host its Cloud Tech and Government IT Summit in a little over a month. The summit will run on September 23rd and 24th at the Mary M. Gates Learning Center in Alexandria, Virginia. The Defense Strategies Institute will offer training and educational seminars in a Town Hall format. DSI says federal agency leaders and innovators in cloud computing will join Industry experts for interactive speeches and debates. The overall focus of the summit is acquiring and securing cloud technology for civilian federal agencies and the DoD. DSI says it will also take a deep dive into IT modernization plans, data center consolidations, and IT infrastructure diversification. You can still register to attend the summit and active duty military and government employees can attend for free.
The Environmental Protection Agency is in the dark with its cloud contracts. EPA's Inspector General says the agency doesn't know how many cloud contracts it has, nor how secure they are. For an investigation, the IG chose a contract that met the definition of a cloud system. But the EPA didn't report it as a cloud contract because it didn't have "cloud" in the description. The agency's also using a sub-contractor that's not compliant with the Federal Risk and Authorization Management Program. The IG says the company might not have the capability to access its cloud system hardware so the office can investigate. The EPA didn't even know it was buying a cloud system at the very start of the contracting process. The IG says the agency wasn't aware cloud computing was part of the system it was procuring.
The General Services Administration will add a special cloud category to its IT Schedule 70 contracting vehicle. GSA wants to consolidate the contract's cloud options under a specific special item number. Right now the agency lists the cloud options under a variety of different numbers, so agencies browsing the system can't find them all in one place. GSA says the new approach will help small agencies in particular. The cloud-specific number will have its own subcategories of cloud-specific services, too. GSA wants industry recommendations on how to do it: a request for information is out on how best to differentiate the types of cloud services Schedule 70 includes. The deadline for the cloud industry to respond to GSA's request for information is August 6th. You can find the RFI on Fed Biz Opps.
The Defense Department's testing its own version of cybersecurity standards for cloud systems. The Defense Information Systems Agency is working with all the military branches to find a cybersecurity program that protects the cloud with Level-3 security requirements. DISA's enterprise cloud broker is conducting the software tests. DoD's chief of the risk management oversight division in the chief information officer's office,Kevin Delaney, isn't sure when the tests will be over. He says the development needs to run incrementally so each level of security controls are working right. The tests are coinciding with the deadline for agency cloud systems to earn security certification through the Federal Risk and Authorization Management Program. Right now FedRAMP offers cloud certification for low to moderate security levels.
DISA is working with the services to identify a mission-critical application in the cloud to ensure the additional requirements for Level-3 security are appropriate and achievable. Meanwhile, the FedRAMP program office is beginning to consider what the program will look like in two to three to five years.
New cloud security guidance is out from the Federal Risk and Authorization Management program, or FedRAMP. It includes new security controls and templates for agencies and cloud service providers to implement the new controls. The updates came a day after the deadline for agencies to earn FedRAMP certification for their cloud systems. The updates reflect changes from the National Institute of Standards and Technology's Special Publication 800-53. FedRAMP program manager Matt Goodrich says the latest update is the largest release of new FedRAMP information since the General Services Administration unveiled the whole concept two years ago. Right now federal agencies have 16 different FedRAMP-certified cloud options. Goodrich says those 16 options are already in place in 160 locations across the federal government.
Almost 90 percent of federal chief information officers say their agency has migrated to cloud computing in some way. That's according to a TechAmerica survey of about 60 federal CIOs and federal information technology professionals from 32 different agencies. More than one third of the respondents say they've already migrated their e-mail services, and about one in five have a cloud-based website or webpage service. One of the responding agencies expects to save more than $10 million a year from switching its enterprise e-mail system to the cloud. Federal systems are split in half between using private cloud providers and public cloud providers. Many CIOs are interested in expanding their cloud systems want to add new collaboration tools and a way to test new environments for their agencies.
A new survey by TechAmerica and Grant Thornton found many agency chief information officers continue to spend too much on legacy systems and don't have money to develop or modernize new software or applications. But tools such as PortfolioStat are making a difference in helping senior IT managers understand and have a say in where money is spent in their agency.
Cloud technologies are creating compliance problems for the FBI at the state level. Because of the security and privacy regulations for contractors working with the agency, regular state police officers have to jump through legal hoops to access FBI databases remotely to run checks on suspicious people from a laptop or their patrol car. The FBI requires a cloud provider to run criminal background checks on every one of its own employees in each location it wants a cloud service. Some states are already working with cloud providers to strike special compliance deals with the FBI so officers and contractors can earn special certification to interact with FBI databases through the cloud. Nextgov reports state agencies are now running special audits to make sure cloud contractors follow the FBI's regulations.
The Defense Department and Intelligence community are starting to work together as they build similar paths to new enterprise information technology structures.
The deadline to earn certification for the Federal Risk and Authorization Management Program is only a couple of weeks away. The General Services Administration is scheduling two events to further educate cloud security vendors and federal agencies
A drive to push federal agencies to adopt cloud computing is earning a GSA employee some prestigious recognition. Sonny Hashmi is the acting chief information officer at the General Services Administration. He's a finalist for one of this year's Service to America Medals in the Management Excellence category, which is presented by the nonprofit Partnership for Public Service.
The intelligence community and the Defense Department are both trying to build IT networks that attempt to get rid of IT stovepipes. In the process, they've found a few ways to work together.
Congress wants the Department of Defense to change its cloud security requirements in order to make them more vendor-friendly. Congressmen Derek Kilmer (D-Wa.) and Niki Tsongas (D-Ma.) are proposing the Defense Cloud Security Act to clarify its requirements and offer more opportunities for vendors to meet those standards.
Cloud computing providers who want to do business with the federal government will have to meet revised security standards by specific deadlines.
In this edition of Inside the Reporter's Notebook, Executive Editor Jason Miller shares news and buzz about the IT and acquisition communities. GSA and SBA continue their ongoing quarrel over the Office Supplies 3 contract, and April marks the three-year anniversary of NSTIC's release.
After two years of planning, the intelligence community is ready to start deploying the set of common IT services that make up the Intelligence Community Information Technology Enterprise (ICITE).
The next version of cloud security standards is under development, even as agencies race to comply with current ones. The General Services Administration and the departments of Defense and Homeland Security are kicking off FedRAMP 2.0 by incorporating new NIST guidance. Federal News Radio Executive Editor Jason Miller joined Federal Drive hosts Tom Temin and Emily Kopp to explain how the agencies are keeping different standards aligned. Read Federal News Radio's related article.