As COVID-19 created unprecedented demand for remote work, one Federal agency was especially well equipped to transition to full telework in March 2020. The civilian agency had invested in robust collaboration tools and IT infrastructure, including network bandwidth upgrades in January 2020, which eased the transition and kept workers productive.
Cloud security provider Zscaler said this week that its Zscaler Internet Access (ZIA) service has been selected to be “prioritized” for Joint Authorization Board (JAB) FedRAMP certification at the High Impact Level through the General Services Administration’s FedRAMP Connect program.
The Federal Risk and Authorization Management Program (FedRAMP) is looking to make the move from manual processes to automated ones, focusing on two strategic initiatives that will make cloud security even easier for agencies.
After being excluded from the final version of the National Defense Authorization Act (NDAA), the 117th Congress made the Federal Risk Assessment and Management Program (FedRAMP) Authorization Act one of the first bills passed in the House, passing by voice vote today.
Following the 11th hour exclusion of his bill to codify the Federal Risk Assessment and Management Program (FedRAMP) into law from must-pass defense legislation, Rep. Gerry Connolly, D-Va., said he’s interested in giving the measure another push after the 117th Congress begins in January 2021.
Rory Kinney, Services Executive at the Defense Information Systems Agency’s (DISA) Operations Center, praised the operational balance that milCloud 2.0 services can bring to Department of Defense (DoD) organizations looking to move to cloud services, and forecasted that milCloud 2.0 is in line for a FedRAMP certification upgrade early next year.
The General Services Administration’s (GSA) FedRAMP Program has made significant strides over fiscal year 2020 and its priorities remain consistent as we look toward FY2021.
Cloud security provider Zscaler said it is making progress in efforts to obtain “High Impact” level classification under the Federal Risk and Authorization Management Program (FedRAMP) for its Zscaler Internet Access (ZIA) service – a secure internet and web gateway solution that was the first product of its kind to receive to earn FedRAMP certification earlier this year.
The House voted late on July 20 to include in the Fiscal Year 2021 National Defense Authorization Act (NDAA) legislation that would codify into law the FedRAMP program – giving the program a statutory foundation and formal standing for congressional review.
The General Services Administration (GSA) attributes the FedRAMP program’s success to building a culture that prioritizes continuous improvement, and aims to continue program growth through its recently launched FedRAMP Agency Liaison Program.
A collection of trade groups representing the nation’s biggest tech firms is urging Senate leadership to match or exceed the $1 billion in funding for the Technology Modernization Fund (TMF) approved by the House last month as part of the HEROES Act pandemic-relief legislation.
FedRAMP announced that it has kicked off a new initiative – the Agency Liaison Program – that the FedRAMP Project Management Office (PMO) said is “designed to transform the way FedRAMP informs and collaborates with Federal agencies,” and “help agencies and industry be more efficient in their cloud adoption efforts.”
The National Institute of Standards and Technology (NIST) released Open Security Controls Assessment Language (OSCAL) 1.0.0 Milestone 3, a key step toward finalizing the full initial release of OSCAL v1.
Often taken for granted in the eight weeks since the coronavirus pandemic struck is one simple but vital truth: the linchpin holding together the Federal government’s ability to provide crucial services is the technology that ties the enterprise together. Federal IT has literally brought us together – as a government, and as a nation. As government IT operations achieve steady-state and look to the next chapter of digital modernization, MeriTalk is chronicling the untold stories – and lessons – of that effort. Today we check in with the General Services Administration’s Technology Transformation Services (TTS) operation.
Cloud security provider Zscaler announced that its Zscaler Private Access (ZPA) service has achieved the first-ever FedRAMP (Federal Risk and Authorization Management Program) High Authority designation from the FedRAMP Joint Authorization Board (JAB) for zero trust remote access service.
Katie Arrington, Cybersecurity Maturity Model Certification (CMMC) lead and CISO for acquisition at the Department of Defense’s (DoD) Undersecretary of Defense, confirmed that the CMMC and FedRAMP (Federal Risk and Authorization Management Program) offices are working on a way to grant reciprocity between the two certifications.
MeriTalk sat down with CyberArk’s Federal Customer Success Director Kevin Jermyn to hear his thoughts and insights on privileged access management, and the impact it’s having on our Federal government.
Fresh off notching an A+ grade on the latest FITARA Scorecard, the Department of Education knows it has a handle on good IT, and agency CISO Steven Hernandez said today he credits a measure of that success to an important mindset change on data.
A senior General Services Administration (GSA) official said today the agency is supportive of the primary aims of a new report recommending steps to modernize the Federal Risk and Authorization Management Program (FedRAMP), which provides a standardized approach to security assessment, authorization, and continuous monitoring for cloud products and services.
The National Mediation Board (NMB) has not yet fully implemented several Government Accountability Office (GAO) recommendations including those involving information privacy and information security.
The FedRAMP Authorization Act, sponsored by Rep. Gerry Connolly, D-Va., passed unanimously in the House by voice vote on Feb. 5.
The Federal Risk and Authorization Management Program (FedRAMP) and the National Institute of Standards and Technology (NIST) released the Open Security Controls Assessment Language (OSCAL) Milestone 2 for public comment.
The House Oversight and Reform Committee voted to advance the Federal Risk Authorization and Management Program (FedRAMP) Authorization Act to the full House during a work session today.
The General Services Administration’s (GSA) Federal Risk and Authorization Management Program (FedRAMP) will focus on administering simplicity, automation, marketplace growth, and learning opportunities in Fiscal Year 2020, according to Director Ashley Mahan.
The General Services Administration is taking its FedRAMP Program to cloud service providers, start-ups, and entrepreneurs in San Francisco on Sept. 25 to showcase opportunities to work with the program that speeds the authorization process to provide products and services in the Federal government’s $90 billion per year IT market.
A project under development at the National Institute of Standards and Technology (NIST) is aiming to fully automate FedRAMP (Federal Risk and Authorization Management Program) and enable interoperable automation for cloud service providers (CSPs).
Leadership of the House Government Reform Subcommittee introduced legislation today that would codify into law the FedRAMP (Federal Risk Assessment and Management Program), and take a number of other actions aimed at making the program work more efficiently.
The Federal Risk and Authorization Management Program (FedRAMP) today announced the launch of its Ideation Challenge that aims to inform the next iteration of the program’s processes and supporting functions.
The Consumer Financial Protection Bureau (CFPB) did not fully assess and authorize all of its cloud systems and did not effectively communicate with the FedRAMP program management office, leaving its cloud security at risk, according to an inspector general report published July 17.
Democratic and Republican leaders of the House Subcommittee on Government Reform today previewed their bipartisan effort to create legislation that would codify into law the FedRAMP (Federal Risk Assessment and Management Program) program that standardizes security requirements of cloud services used by the government, and make the FedRAMP program operate more efficiently.