FedRAMP – What’s the Big Deal?
If you are someone who works for a cloud service provider in the business of federal contracting, you probably already have a good understanding of FedRAMP. It is also likely that our regular blog readers know the ins and outs of this program. For those who are not involved in ...
US County Election Websites (Still) Fail to Fulfill Basic Security Measures
In January 2020, McAfee released the results of a survey establishing the extent of the use of .GOV validation and HTTPS encryption among county government websites in 13 states projected to be critical in the 2020 U.S. Presidential Election. The research was a result of my concern that the lack ...
NDAA Conference: Opportunity to Improve the Nation’s Cybersecurity Posture
As Congress prepares to return to Washington in the coming weeks, finalizing the FY2021 National Defense Authorization Act (NDAA) will be a top priority. The massive defense bill features several important cybersecurity provisions, from strengthening CISA and promoting interoperability to creating a National Cyber Director position in the White House ...
Multi-Cloud Environment Challenges for Government Agencies
Between January and April of this year, the government sector saw a 45% increase in enterprise cloud use, and as the work-from-home norm continues, socially distanced teamwork will require even more cloud-based collaboration services. Hybrid and multi-cloud architectures can offer government agencies the flexibility, enhanced security and capacity needed to ...
Quantifying Cloud Security Effectiveness
Let’s start with the good news. Agencies are adopting cloud services at an increased rate. Adoption has only increased in times of coronavirus quarantine lockdowns with most federal, state and municipal workforce working from home. What’s even better news is that we also see increased adoption of cloud security tools, ...
Defending our DoD Customers at Home
When the COVID-19 pandemic began, I heard that many of our Defense customers would be working from home and immediately thought, “We have to help them do this securely.” Very quickly, however, another issue arose: How were some of them going to do it at all, as they were not ...
Custom Applications with CASB
More and more organizations are making the decision to move their legacy, in-house applications to the cloud mainly due to the cost savings. One of the major concerns about moving applications to the cloud is how to secure an application that was originally designed to be on-premise. When these applications ...
Zero Trust, SASE-Digital Enablers or Adding Complexity to Cyber Ecosystems
Given the title of this article I suspect you are reading this because you have been in a recent situation where you have been asked the question “What is the difference between Zero Trust and SASE?”. I further suspect that the next question you were asked of course is “Which ...
Smart Government and IoT: The Importance of Integration
How does one define “smart” in the digital age? It can be argued that the term represents a creative solution driven by a precise mission. To another, it’s defined by the latest machine learning (ML) algorithms and artificial intelligence (AI)-guided decision-making features in the newest release of a tool. While ...
Interoperability Is Key To Cybersecurity – A Conversation at CSIS
Interoperability – a subject that for too long cybersecurity companies have treated as an inconvenient nuisance – is finally getting the attention it deserves. In February, I had the opportunity to discuss the critical nature of interoperability with true security experts in the public and private sectors. We agreed that ...
