Latest Headlines

Latest Headlines

Federal cloud decision makers are looking for an off-ramp when it comes to FedRAMP

A majority of federal cloud decision makers would consider a non-FedRAMP-compliant cloud deployment, even though FedRAMP is mandatory for agency cloud deployments and service models at the low and moderate risk impact levels.

Skyhigh Networks becomes first CASB to score FedRAMP certification

Skyhigh Networks this week became the first cloud access security broker, or CASB, to achieve Federal Risk and Authorization Management Program, or FedRAMP, certification, the company announced Tuesday.

DISA updates cloud security requirements guide

The Defense Department's chief information officer and the Defense Information Systems Agency on Friday issued an update to its Cloud Computing Security Requirements Guide, which updates guidance from January 2015.

GSA tweaks FedRAMP process, adding preliminary review

The General Services Administration expects that by adding a preliminary readiness assessment, cloud service providers hoping to move through the federal government's cloud computing authorization program, known as the FedRAMP, will be able to do so more quickly.

18F issues draft RFQ for FedRAMP dashboard

In seeking a better sense of the certification process under the Federal Risk and Authorization Management Program, or FedRAMP, the General Services Administration's innovation agency, 18F, issued a draft request for proposals for a dashboard.

NIST kicks off fifth revision to security, privacy controls

The National Institute of Standards and Technology plans to re-issue what some consider the agency's most important cybersecurity publication this calendar year.

Spotlight: Vendors air FedRAMP grievances

In a new report, a group of technology contractors that have used the federal government's streamlined cloud computing authorization process, call the Federal Risk and Authorization Management Program "fundamentally broken."

FedRAMP authorization process changes, 'high' security baseline pilot in the works

The General Services Administration-led program that aims to speed up and standardize agencies' security assessments for cloud computing technology plans to roll out major changes in the coming weeks and months.

Ideas for strengthening cybersecurity boil down to 5 main categories

Five action categories emerged in a new report on ways the government can better tackle cybersecurity.

GSA begins planning for new cloud support portfolio

The General Services Administration posted a public notice last week seeking feedback on support services that could help ease agencies' transition to the cloud. GSA could use the information to create a new cloud portfolio, although it's unclear if such a portfolio would supplement or replace some of GSA's current cloud computing programs.