Tag Archives: cloud security

The Cybersecurity and Infrastructure Security Agency (CISA) has issued an analysis report in response to cyber attacks on cloud services of various organizations. The agency also found that hackers take advantage of email forwarding rules created by users to gain access to sensitive data. CISA has recommended several measures to help organizations protect cloud environments.

Vice Adm. Nancy Norton, director of the Defense Information Systems Agency (DISA) and Wash100 awardee, has said the agency is working to “isolate” suspicious activities in a cloud environment to support remote work operations, DOD News reported Thursday. "Our primary goal is to preserve and protect the ability of our workforce to conduct mission central operations that we support on national defense and current worldwide military missions," she said.

Ashley Mahan, director of the General Services Administration’s (GSA) Federal Risk and Authorization Management Program (FedRAMP), said that FedRAMP saw a 50 percent rise in government agencies reusing certified cloud services in fiscal year 2020 as those organizations continue to work to meet the telework requirements during the COVID-19 pandemic.

The Federal Risk Authorization Management Program (FedRAMP) is working with the National Institute of Standards and Technology (NIST) to implement a universal programming language that can help accelerate cloud certification and drive automation in government operations. “What normally would take an assessor weeks to do, an OSCAL tool can perform in seconds,” said David Waltermire. 

Zscaler has expanded its strategic partnership with VMware to help organizations simplify security in the changing workplace. Under the partnership, Zscaler will align the next-generation networking and security capabilities from its offerings as well as VMware, to help large global enterprises simplify the adoption of a complete Secure Access Service Edge (SASE) architecture. 

Zscaler has announced new data protection innovations in the Zscaler Zero Trust Exchange that will protect organizations in telework by securely connecting users, devices and applications. Zscaler has built its Zero Trust Exchange on a Secure Access Services Edge (SASE) framework, which will expand the offering’s data protection capabilities. 

Zscaler has announced its intent to acquire Cloudneeti, a Cloud Security Posture Management (CSPM) company to provide its customers industry-leading data protection coverage in the Zscaler Cloud Security Platform, Zscaler reported on Thursday. 

Anne Neuberger, director of the cybersecurity directorate at the National Security Agency, said NSA plans to publish updated cloud security guidance for companies by the end of 2019, the Wall Street Journal reported Tuesday.

The General Services Administration and National Institute of Standards and Technology are working to implement automation in review procedures for the Federal Risk Authorization and Management Program, the Federal News Network reported Tuesday.

The Department of Defense is working on security guidance to prepare for cloud deployment once the Joint Enterprise Defense Infrastructure contract is awarded, FedScoop reported Thursday.