Home / Tag Archives: continuous monitoring

Tag Archives: continuous monitoring

FedRAMP Issues 3 New Documents on Continuous Monitoring Process

The Federal Risk and Authorization Management Program has released three new documents to clarify its process for continuously monitoring FedRAMP-authorized cloud service providers. FedRAMP said Tuesday the new continuous monitoring documents include a draft of the “Automated Vulnerability Risk Adjustment Framework Guidance,” which is intended to help CSPs build and deploy …

Read More »

Inspector General: 64 of DHS’ National Security, Unclassified Systems Lack Authority to Operate

The Department of Homeland Security‘s inspector general evaluated DHS’ information security program for fiscal 2017 in compliance with the Federal Information Security Modernization Act of 2014 and found that 64 of its national security and unclassified systems lacked authority to operate. DHS IG said in a report published Wednesday the department failed …

Read More »

FedRAMP Issues New Documents, Updates to Optimize Continuous Monitoring Process

The Federal Risk and Authorization Management Program has released new documents and updated existing guides in an effort to streamline, clarify and optimize its continuous monitoring processes. FedRAMP said Wednesday the new and updated documents integrate feedback from cloud service providers and Joint Authorization Board review teams. The documents are intended to clarify certain elements …

Read More »

Ron Ross: NIST Updates Security Control Evaluation Guidance to Match Continuous Monitoring Strategies

The National Institute of Standards and Technology has published a new set of guidelines for evaluating security and privacy controls in federal information systems, GovInfoSecurity reported Monday. Eric Chabrow writes Ron Ross, an NIST fellow, said the guide is designed to complement continuous monitoring and information security authorization programs across …

Read More »

Report: Europe, US Differ in Cyber Defense Approaches

The U.S. and Europe appear to follow different approaches in addressing issues related to cyber threats and cybersecurity, FCW’s Edwin Bentley reported Thursday, citing his observations at the recent Infosecurity Europe and FOSE conferences. Bentley writes that while Europe seems to be reactive by reporting encountered threats to the government, the U.S. …

Read More »

DHS IT Security System Earns Top Marks for FISMA Compliance; Jaime Vargas Comments

The recent Federal Information Security Management Act report named the Department of Homeland Security as the top performer in an assessment of federal agencies’ compliance to IT security standards, GCN reported Thursday. DHS’ continuous monitoring system, which is run by the department’s Office of the Inspector General, received a score of 99 for the second …

Read More »