The Office of Management and Budget (OMB) and the Cybersecurity and Infrastructure Security Agency (CISA) both published key draft guidance documents today that provide the next set of road maps for Federal civilian agencies to transition to zero trust security concepts over the next three years and to guide agencies to securely migrate to cloud services. […]
Federal IT modernization may see a significant increase in funding, $3.35 billion to be exact, if an amendment from Rep. Gerry Connolly, D-Va., is successful. […]
The Federal Risk and Authorization Management Program (FedRAMP) authorization journey can sometimes be a confusing one to navigate, but experts agree that the National Institute of Standards and Technology’s (NIST) Open Security Controls Assessment Language (OSCAL) formats are helping to speed the FedRAMP approval process. […]
Federal agency demand for cloud service products in the General Services Administration’s (GSA) FedRAMP marketplace showed a 60 percent year-over-year jump in the first half of Fiscal Year 2021, as agencies continued their move to cloud services in order to deal with pandemic-driven tech needs and IT modernization priorities. […]
FedRAMP released its annual survey for FY2021 today. […]
A new tool from MeriTalk and stackArmor is providing insight into the Federal Risk and Authorization Management Program (FedRAMP), and helping cloud service providers (CSPs) make data-driven decisions while pursuing their authorization journey. […]
The FedRAMP Authorization Act sponsored by Rep. Gerry Connolly, D-Va., has been nearly four years in the making without crossing the goal line. But after the House approved the bill earlier this year, Rep. Connolly said today that the House is “working in lockstep” with Senate colleagues to hopefully pass the bill in 2021. […]
The American Association for Laboratory Accreditation (A2LA) has released an updated version of the R311 policy document, which outlines the requirements for all FedRAMP recognized third-party assessment organizations (3PAOs) and organizations seeking A2LA accreditation to be recognized by FedRAMP. […]
While the Federal government certifies cloud vendors as secure through the General Services Administration’s (GSA) Federal Risk and Authorization Management Program (FedRAMP), an official at the Government Accountability Organization (GAO) shared striking statistics about agencies going outside of the program for cloud vendors, which can lead to vulnerabilities. […]
FedRAMP and the National Institute of Standards and Technology (NIST) announced the release of version 1.0.0 of the Open Security Controls Assessment Language (OSCAL) that aims to help cloud service providers (CSPs) speed the FedRAMP approval process. […]
Due to the ongoing COVID-19 pandemic, FedRAMP announced that it is now allowing remote testing of data centers. […]
The General Services Administration’s FedRAMP program announced that it extended the deadline for its Connect Business Cases to May 21, 2021. […]
The Internal Revenue Service’s (IRS) Office of Online Services (OLS) is looking for a FedRAMP compliant Customer Feedback Management (CFM) cloud-based solution. […]
The Federal Risk and Authorization Management Program (FedRAMP) has released guidance for scanning for vulnerabilities in cloud containers. […]
U.S. Customs and Border Protection (CBP) issued a request for information (RFI) regarding the private sector capabilities to support key capabilities of an Incident-Driven Video Recording System (IDVRS) program – body-worn cameras (BWC), video management systems (VMS), IT infrastructure, cloud-based storage systems, and other interrelated systems supporting incident-driven recordings. […]
The FedRAMP Program Management Office (PMO) announced March 24 that it has recently joined YouTube. The PMO said its channel will serve as “a one-stop source for quick, simple, informative videos on FedRAMP tutorials, and program updates.” […]
The United States Census Bureau is turning to cloud services, in the form of Software-as-a-Service (SaaS), to design and deploy surveys. […]
As COVID-19 created unprecedented demand for remote work, one Federal agency was especially well equipped to transition to full telework in March 2020. The civilian agency had invested in robust collaboration tools and IT infrastructure, including network bandwidth upgrades in January 2020, which eased the transition and kept workers productive. […]
The Department of Agriculture’s (USDA) Office of the Assistant Secretary for Civil Rights (OASCR) is looking for a new cloud-based Equal Employment Opportunity (EEO) complaint tracking system. […]
The U.S. Marine Corps (USMC) is looking to streamline desk and conference room reservations through a cloud-based solution. […]
The Secret Service is looking to purchase approximately 2,000 cloud-based body cameras for its agents, according to a request for information (RFI) posted on Beta.Sam.gov. The RFI notes that the eventual contract would be a firm fixed-price contract. […]
The General Services Administration (GSA) announced today that it has revamped the FedRAMP website to “further empower agencies to use innovative cloud technologies and to continue driving security and protection of Federal information.” […]
Cloud security provider Zscaler said this week that its Zscaler Internet Access (ZIA) service has been selected to be “prioritized” for Joint Authorization Board (JAB) FedRAMP certification at the High Impact Level through the General Services Administration’s FedRAMP Connect program. […]
Today, MeriTalk launches MeriTV, a new platform delivering news and commentary on today’s mission-critical government IT challenges. […]
The Federal Risk and Authorization Management Program (FedRAMP) is looking to make the move from manual processes to automated ones, focusing on two strategic initiatives that will make cloud security even easier for agencies. […]
After being excluded from the final version of the National Defense Authorization Act (NDAA), the 117th Congress made the Federal Risk Assessment and Management Program (FedRAMP) Authorization Act one of the first bills passed in the House, passing by voice vote today. […]
The FedRAMP Program Management Office (PMO) recapped its efforts to gather feedback from Third Party Assessment Organizations (3PAOs) in a new blog post. […]
Build once, use many times is a foundational framework to accelerate IT modernization, drive innovation and maximize the value of investments. In Federal IT, standardizing security and compliance of cloud solutions is underway with the Federal Risk and Authorization Management Program (FedRAMP). But the process has historically been time consuming and expensive for vendors, preventing the rapid delivery of cloud-based solutions in support of agency missions. […]
FedRAMP released its plan to align with the National Institute of Standards and Technology’s (NIST) latest update to SP 800-53, Security and Privacy Controls for Information Systems and Organizations, Revision 5 (Rev5). […]
Federal agencies are leveraging past work on authorizations to operate (ATO) to bring in more cloud tools covered by the Federal Risk Authorization Management Program (FedRAMP) during the COVID-19 pandemic, said Brian Conrad, FedRAMP Cybersecurity Program Manager. […]