Home / News / DoD Eyes FedRAMP-Based Process for Acquisition of Mobile App Security Services

DoD Eyes FedRAMP-Based Process for Acquisition of Mobile App Security Services

The Defense Department plans to roll out a new process for its acquisition of mobile application security services based on the Federal Risk and Authorization Management Program model, Federal News Radio reported Monday.

John Zangardi, acting DoD chief information officer, signed the mobile application security requirements memorandum which was designed to establish a baseline standard for applications as well as advocate reciprocity throughout the military.

“The [National Information Assurance Partnership] developed the baseline set of security requirements for organizations engaged in locally evaluating mobile applications … These requirements are achievable, testable, and repeatable and provide a basis for technical evaluation and risk determination by Authorization Officials,” said Zangardi in the memo.

Zangardi directed DoD agencies and service branches to utilize the “Requirements for Vetting Mobile Applications from the Protection Profile for Application Software” NIAP profile and tasked the Defense Information Systems Agency to create a portal for the new process within the next 90 days.

DoD service branches and agencies will also assess applications from the mobile application portal and other commercial stores prior to its development and acquisition to determine potential security threats.

Check Also

Barbara Barrett Nominated for Air Force Secretary Post; Replacing Heather Wilson

President Trump announced his nomination of Barbara Barrett, former chairwoman of The Aerospace Corp., to be the next U.S. Air Force secretary, CNN reported Tuesday. She will succeed Heather Wilson, who stepped down from the SecAF post to join the University of Texas at El Paso as president, once she receives Senate confirmation. 

Leave a Reply

Your email address will not be published. Required fields are marked *