Tag Archives: cloud service provider

Judy Baltensperger, Kevin Cox Share Plans for CISA’s Continuous Diagnostics and Mitigation Program

Cybersecurity

The Cybersecurity and Infrastructure Security Agency (CISA) plans to provide in 2021 an updated Continuous Diagnostics and Mitigation (CDM) program that could help reduce reporting requirements for agencies while helping them improve security. Judy Baltensperger said most of the pilot agencies have moved their infrastructure to the cloud and that data quality certification will likely be carried out by the summer of 2021.

Read More »

NIST Releases Report on Forensic Science Concerns in Cloud Environments; Martin Herman Quoted

Cloud-Based

The National Institute of Standards and Technology (NIST) has issued a new report on forensic science challenges faced by law enforcement officers, auditors and other professionals in cloud environments. The report enumerated 62 cloud-related forensic challenges and one of those listed challenges is associated with data custodians at cloud service providers. 

Read More »

Anil Cheriyan: FedRAMP Plans to Establish Liaison, Boost Training in 2020

Anil Cheriyan, director of the General Services Administration’s Technology Transformation Services, said the Federal Risk and Authorization Management Program is working to create a liaison to help coordinate with civilian agencies in order to improve understanding of FedRAMP, Federal Times reported Friday.

Read More »

GSA Eyes FedRAMP Training Program for Federal Security Officials

General Services Administration officials said they plan to provide federal security officers hands-on training on the Federal Risk and Authorization Management Program, FedScoop reported Wednesday. “We’re going to start bringing security officers into our office, give them some training on FedRAMP, radicalize them to our methodologies,” Zach Baldwin, program manager at FedRAMP, said Tuesday at the Cloud Security Alliance’s federal summit. 

Read More »

Navy Eyes Commercial Cloud Providers for Long-Haul Telecom Services; Will Stephens Quoted

The U.S. Navy plans to kick off a prototype project in the spring of 2019 to determine whether to outsource long-haul telecommunications support to one or more cloud service providers, Federal News Network reported Tuesday. The service currently relies on the Defense Information Systems Agency’s wide-area network for telecom services. 

Read More »

FedRAMP Issues 3 New Documents on Continuous Monitoring Process

The Federal Risk and Authorization Management Program has released three new documents to clarify its process for continuously monitoring FedRAMP-authorized cloud service providers. FedRAMP said Tuesday the new continuous monitoring documents include a draft of the “Automated Vulnerability Risk Adjustment Framework Guidance,” which is intended to help CSPs build and deploy …

Read More »