The Cybersecurity and Infrastructure Security Agency (CISA) has issued an analysis report in response to cyber attacks on cloud services of various organizations. The agency also found that hackers take advantage of email forwarding rules created by users to gain access to sensitive data. CISA has recommended several measures to help organizations protect cloud environments.
Read More »Vice Adm. Nancy Norton on DISA’s Cloud-Based Threat Isolation Effort
Vice Adm. Nancy Norton, director of the Defense Information Systems Agency (DISA) and Wash100 awardee, has said the agency is working to “isolate” suspicious activities in a cloud environment to support remote work operations, DOD News reported Thursday. "Our primary goal is to preserve and protect the ability of our workforce to conduct mission central operations that we support on national defense and current worldwide military missions," she said.
Read More »FedRAMP’s Ashley Mahan on Increase in Cloud Services Reuse
Ashley Mahan, director of the General Services Administration’s (GSA) Federal Risk and Authorization Management Program (FedRAMP), said that FedRAMP saw a 50 percent rise in government agencies reusing certified cloud services in fiscal year 2020 as those organizations continue to work to meet the telework requirements during the COVID-19 pandemic.
Read More »NIST, FedRAMP Developing Programming Language to Help Automate Cloud Security Assessments
The Federal Risk Authorization Management Program (FedRAMP) is working with the National Institute of Standards and Technology (NIST) to implement a universal programming language that can help accelerate cloud certification and drive automation in government operations. “What normally would take an assessor weeks to do, an OSCAL tool can perform in seconds,” said David Waltermire.
Read More »Zscaler Extends VMware Partnerships to Advance Workplace Security; Jay Chaundhry, Sanjay Poonen Quoted
Zscaler has expanded its strategic partnership with VMware to help organizations simplify security in the changing workplace. Under the partnership, Zscaler will align the next-generation networking and security capabilities from its offerings as well as VMware, to help large global enterprises simplify the adoption of a complete Secure Access Service Edge (SASE) architecture.
Read More »Zscaler Adds New Features to Zero Trust Exchange; Amit Sinha Quoted
Zscaler has announced new data protection innovations in the Zscaler Zero Trust Exchange that will protect organizations in telework by securely connecting users, devices and applications. Zscaler has built its Zero Trust Exchange on a Secure Access Services Edge (SASE) framework, which will expand the offering’s data protection capabilities.
Read More »Zscaler Announces Intent to Acquire Cloudneeti to Enhance Data Protection Coverage; Jay Chaudhry, Gururaj Pandurangi Quoted
Zscaler has announced its intent to acquire Cloudneeti, a Cloud Security Posture Management (CSPM) company to provide its customers industry-leading data protection coverage in the Zscaler Cloud Security Platform, Zscaler reported on Thursday.
Read More »Anne Neuberger: NSA to Release Updated Guidance on Cloud Security
Anne Neuberger, director of the cybersecurity directorate at the National Security Agency, said NSA plans to publish updated cloud security guidance for companies by the end of 2019, the Wall Street Journal reported Tuesday.
Read More »GSA, NIST Working to Automate FedRAMP Assessments
The General Services Administration and National Institute of Standards and Technology are working to implement automation in review procedures for the Federal Risk Authorization and Management Program, the Federal News Network reported Tuesday.
Read More »DoD Working on Security Guidance for JEDI Cloud
The Department of Defense is working on security guidance to prepare for cloud deployment once the Joint Enterprise Defense Infrastructure contract is awarded, FedScoop reported Thursday.
Read More »