The Federal Risk and Authorization Management Program (FedRAMP) began in 2011 to ensure the security of cloud services used by the federal government. FedRAMP is a government-wide program providing a standardized approach to security assessment, authorization, and continuous monitoring for cloud products and services. FedRAMP uses NIST guidelines in its own framework to enable federal agencies to use cloud services securely and efficiently. Th...

Zero trust revolutionizes network security architecture because it is data-centric and designed to stop data breaches. While that is its primary purpose for government, it also increases agility for modern networks that traditional network designs can’t emulate. It has been almost two years since the Office of Management and Budget issued its federal zero trust architecture strategy, which set out specific goals for agencies to achieve b...

The Cloud Security Alliance Virtual AI Summit brings together experts from around the world to provide key insights on how generative AI can benefit cybersecurity, how malicious attackers are using it and guidelines for responsible usage. The explosive growth of ChatGPT is due in large part to its delivery via the cloud, obligating CSA and its community to take a leading role in articulating the best practices and assurance ecosystem for AI as...

On May 4th, NARA released updated regulations on Digitization Standards for Permanent Records – AC 31.2023. The regulations established standards for digitizing permanent paper records and photographic prints. The regulations are in 36 CFR 1236, Subpart E and go into effect on June 5, 2023. NARA will be issuing a new GRS 4.5 that will cover digitizing records – the GRS and new regulations are related. These regulations have a signi...

A multi-cloud strategy is the utilization of two or more cloud services from any number of cloud providers that are compatible with and extend an organization’s hybrid cloud environments. It allows agencies to deploy applications on the public and private clouds that best suit agency business objectives and application needs. A multi-cloud platform provides multiple advantages including greater flexibility, more deployment options, secur...

Zero Trust is a key component of every federal IT initiative and modernization effort. The Executive Order on Improving the Nation’s Cybersecurity, the CISA Zero Trust Maturity Model, the DISA Zero Trust Architecture, and various NIST guidance all include mission critical elements for zero trust implementation. Although the principals of Zero Trust are widely accepted, the implementation process is a detailed, time-consuming, and agency...

The Continuous Diagnostics and Mitigation (CDM) program is the process government agencies use to move toward fortifying their cybersecurity networks and systems. It was developed in 2012 to support government-wide risk-based cybersecurity solutions to assist participating agencies improve their security posture consistently and cost-effectively. In this virtual workshop, government & industry experts will provide the following: a status u...

SecureWorld events and programming foster Growth, Access, and Excellence among cybersecurity professionals. SecureWorld is… the stepping stone to grow in your abilities and career path SecureWorld is… access to the knowledge and solutions you need, in the place you live SecureWorld is… a unique experience with excellence in both speakers and content For more than 21 years, SecureWorld has been tackling global cybersecurity...

Since 1967, the Freedom of Information Act (FOIA) has provided the public the right to request access to records from any federal agency. Federal agencies are required to disclose the information requested under the FOIA, unless it falls under one of nine exemptions which protect interests such as personal privacy, national security, and law enforcement. In recent years, federal agencies have been inundated with FOIA requests creating challeng...

Improving customers’ experience when accessing, engaging, and interacting with an agency through contact centers will have a significant impact on their overall experience with government. The Contact Center is a critical link between your agency and your customers. Empathizing with your customers and resolving issues in a timely and effective manner are more important than ever to achieve agency mission. Positive customer experiences dr...