A multi-cloud strategy is the utilization of two or more cloud services from any number of cloud providers that are compatible with and extend an organization’s hybrid cloud environments. It allows agencies to deploy applications on the public and private clouds that best suit agency business objectives and application needs. A multi-cloud platform provides multiple advantages including greater flexibility, more deployment options, secur...

Government-wide pressure to reduce IT costs and optimize operations has led many agencies to embrace cloud computing. Despite the potential savings and improved efficiencies, securing the cloud remains a major concern. Cloud Computing Security can be defined as defending the confidentiality, integrity, and availability of agency assets (data, applications, infrastructure) using cloud services from both outside and insider threats. Securing the...

Information drives and powers modern government with federal, state, and local agencies seeking to improve engagement opportunities with citizens. The challenge is to effectively manage the explosion of information while also protecting citizen’s data and privacy. Keeping up with the rapid expansion of information has put pressure on outdated governance and compliance practices. The 2021 Federal Data Strategy outlines specific actions to...

The Executive Branch has made it clear the United States needs a more resilient and secure supply chain to ensure economic prosperity and national security. The supply chain is only truly secure when all entities throughout the public sector supply chain carry out effective and coordinated security measures to ensure the integrity of supply chain data, the safety of goods, and the security of the respective agency. This virtual workshop will r...

DevSecOps incorporates security initiatives at every stage of the software development life cycle (SDLC). It is a set of practices combining software development, security, and IT operations with the goal of shortening the systems development life cycle securely. From identifying patterns to uncovering new ways to support the mission, DevSecOps is playing an essential role in government’s digital transformation efforts. This virtual work...

The Continuous Diagnostics and Mitigation (CDM) program is the way government agencies move toward fortifying their cybersecurity networks and systems. It was developed in 2012 to support government-wide risk-based cybersecurity solutions to assist participating agencies improve their security posture consistently and cost-effectively. In this virtual workshop, government & industry experts will provide the following: a status update on CD...

Since 1967, the Freedom of Information Act (FOIA) has provided the public the right to request access to records from any federal agency. Federal agencies are required to disclose any information requested under the FOIA, unless it falls under one of nine exemptions which protect interests such as personal privacy, national security, and law enforcement. In recent years, federal agencies have been inundated with FOIA requests creating challeng...

Government wide pressure to reduce IT costs and optimize operations has led many agencies to embrace cloud computing. Despite the potential savings and improved efficiencies, securing the cloud remains a major concern. Cloud Computing Security can be defined as defending the confidentiality, integrity, and availability of agency assets (data, applications, infrastructure) using cloud services from both outside and insider threats. Securing the...

The new Presidential Executive Order has increased emphasis on advancing toward “Zero-Trust Architecture” and “Endpoint Detection and Response (EDR)”, and moving systems to FedRAMP clouds. Additionally, NIST has released the finals of many Risk Management Framework (RMF) standards (SP800-53 Rev 5 – Security Controls, SP800-53B – Security Control Baselines, Privacy Framework, SP800-160 Vol 2 – Systems S...

With the 2022 deadline for the M-19-21 electronic records mandate fast approaching, federal agencies should turn to a proven records management solution that can automate and digitize the process from end-to-end. Discover how a cloud-native content services platform and artificial intelligence tools can automatically capture, declare, and securely transfer records to NARA using business rules and metadata — with little to no user action...