GSA Issues Field Guide for Cybersecurity Risk Prevention

GSA Issues Field Guide for Cybersecurity Risk Prevention
Cybersecurity Risk Prevention

The General Services Administration’s (GSA) 18F digital services unit has released a field guide to help federal agencies mitigate cyber risks in their systems. The federal field guide covers various topics related to cyber strategy development including planning, acquisition and execution.

According to the guide, agencies must first ensure product owners’ capacity to monitor control over outsourced platforms and services.

Agencies must also involve more government end-users in the Agile software development process, evaluate tradeoffs in commercial off-the-shelf technology implementation and provide personnel access to a standardized set of remote collaboration platforms, the guide states.

Other recommendations include executing incremental technology deployment and developing a budget strategy for risk mitigation prototyping efforts.

“Instead of making large, risky investments in major software programs years in advance, agencies should apply Agile principles to break up those larger, monolithic projects into smaller, incremental budget allocations,” according to the report.

“Taking a modular approach compartmentalizes failures, reduces the risk of failure, and brings the size of projects below the threshold for greater agency oversight.”

GovConWire Events will host the Winning Business and FY21 Opportunities Virtual Forum featuring keynote speaker Brian Barnes, Associate Administrator of the Office of Small Business Utilization with the U.S. General Services Administration (GSA), on October 20th.

Click here to register for the Winning Business and FY21 Opportunities Virtual Forum.

Check Also

FireEye

FireEye to Provide Cybersecurity Defenses to Texas DIR; Pat Sheridan Quoted

FireEye, Inc. has announced that it will offer cyber security defenses to Texas public sector agencies, under Texas Department of Information Resources (DIR), the company reported on Thursday. Through the end of 2020, FireEye security products and Mandiant Solutions services will be available to all Texas agencies, county governments, cities and school districts through DIR’s Bulk Purchase Initiative for Endpoint Detection and Response (EDR) solutions.