FCW Summit: FedRAMP
This event qualifies for 5 CPEs
The Federal Risk and Authorization Management Program (FedRAMP), the government-wide plan to secure cloud products and services, is almost a decade old. It is still evolving, however. Early in 2021, the House of Representative passed a bill that would have codified a number of its provisions into law, standardizing its processes for agencies to on-ramp cloud computing technologies. To date, the Senate has not acted on the bill. At the same time, alongside FedRAMP, the Defense Department is pushing out its own security standards for suppliers, which is, in turn, seeing expanding use in civilian IT contracts.
FedRAMP remains an important part of the federal government’s “Cloud Smart” policy for agencies, as hundreds of cloud projects have been authorized by the program. As it moves into its second decade, federal policy makers and technologists look to keep FedRAMP up with ever-advancing IT and security concerns.
This summit will examine the new policy developments, challenges agencies still face in reusing authorizations, and efforts to pass legislation to put FedRAMP requirements into law. It will also look at constantly evolving security landscape, the variety of cloud deployment models and the challenges agencies face to secure the data in them.
Attendees will come away with a better understanding of:
- How the Defense Department’s Cybersecurity Maturity Model Certification program will work with FedRAMP
- What the transition for FedRAMP to National Institute for Standards and Technology’s SP 800-53 Rev5 -- which catalogs security and privacy controls--means for federal agencies and suppliers.
- How state and local governments are assessing using FedRAMP
- The current status of moves to automate the authorization process through the General Services Administration using standardized machine-readable language (Open Security Controls Assessment Language --OSCAL) and a Web Services API.
- Lessons COVID 19 and the SolarWinds hack have taught as agencies accelerated their move to cloud and amplified the need for increased security
- How agencies are using FedRAMP to speed digital transformation
Speaker and Presenter Information
Judy Baltensperger
Project Manager, CDM Dashboard
Cybersecurity and Infrastructure Security Agency
Shane M Barney*
Chief Information Security Officer, Office of Information Technology
UCIS, DHS
Kenneth Bible*
Chief Information Security Officer
Department of Homeland Security
Brian Conrad*
Acting FedRAMP Director and Program Manager for Cybersecurity
General Services Administration
Dr. Michaela Iorga
Senior Security Technical Lead for Cloud Computing
NIST
Victoria Yan Pillitteri
Acting Manager, Security Engineering and Risk Management
Computing Security Division
NIST
G. Nagesh Rao
Chief Information Officer
Bureau of Industry and Security
Department of Commerce
Eric Sanders*
Chief, Risk Management Division, Cybersecurity Office
National Geospatial-Intelligence Agency
Gregory Sisson*
Chief Information Security Officer
Department of Energy
*Pending Agency Approval
Relevant Government Agencies
Air Force, Army, Navy & Marine Corps, Intelligence Agencies, DOD & Military, Office of the President (includes OMB), Dept of Agriculture, Dept of Commerce, Dept of Education, Dept of Energy, Dept of Health & Human Services, Dept of Homeland Security, Dept of Housing & Urban Development, Dept of the Interior, Dept of Justice, Dept of Labor, Dept of State, Dept of Transportation, Dept of Treasury, Dept of Veterans Affairs, EPA, GSA, USPS, SSA, NASA, Other Federal Agencies, State Government, County Government, City Government, CIA, FEMA, Office of Personnel Management, Coast Guard, National Institutes of Health, FAA, Census Bureau, USAID, Federal Government, State & Local Government, FDA, NSA, FCC
View Exhibitor/Sponsorship Details
Event Type
Virtual
When
Wed, Aug 18, 2021, 9:00am - 3:15pm
Cost
| Government/Military: | $0.00 |
| Industry/Contractor: | $445.00 |
| Washington Technology Insider: | $299.00 |
Website
Click here to visit event website
Organizer
Public Sector 360
