The internet is an increasingly dangerous place. The FBI warns of Chinese threats to U.S. critical infrastructure, while the National Security Agency releases guidance for strengthening AI system security. Meanwhile, agencies still wrestle with phishing, ransomware and myriad other threats that occur every day. At the same time, government organizations are expected to implement zero trust architectures, improve identity and access management,...

Generative artificial intelligence (genAI) has arrived with the force of a tsunami across the federal government. In October, Executive Order 14110 on the safe, secure, and trustworthy development and use of AI established the broad outlines for how agencies should evaluate and implement their AI use cases. Now the Office of Management and Budget has issued a memorandum directing agencies to institute governance and risk management processes g...

Adopting a zero trust policy has become imperative for agencies aiming to safeguard their digital assets against increasingly sophisticated threats. It represents a true paradigm shift, away from traditional perimeter-based security models to a more dynamic, trust-never always-verify approach. One critical part of implementing zero trust is managing digital identity – ensuring that access to resources is securely managed and continuously...

Diversity, equity, inclusion and accessibility (DEIA) isn’t a new concept. However, the Biden Administration has made achieving DEIA goals a cornerstone of its agenda. The only problem is that there are numerous mandates, goals and policies all aimed at improving DEIA, which makes wading through the various directives difficult for overburdened agencies. Join us online Wednesday, Feb. 21 from 2-2:50 p.m. ET/11-11:50 a.m. PT to hear from...

Are you familiar with Federal Government programs for protecting controlled unclassified information? There is an increasing emphasis on enforcing the protection of sensitive data by government contractors through cybersecurity compliance programs that require implementation of the Federal Risk and Authorization Management Program (FedRAMP).Companies doing business directly or indirectly with the Department of Defense (DoD) must be aware of th...

Since its launch in 2011, FedRAMP has become the best practice for selecting, deploying, and managing cloud systems and applications in the U.S. Federal Government. And in January 2023, the FedRAMP Authorization Act made FedRAMP the law of the land! Now, Rev 5 of FedRAMP brings unprecedented levels of automation and continuous monitoring to this industry leading approach enabling faster submissions and authorizations. The key to these new leve...

Cybersecurity education and workforce development is a significant issue given large current national capability and skills gaps. In this webinar, we bring together key partners and major stakeholders from the public sector, private sector, and academia to discuss pathways of collaboration and partnerships moving forward to solving this important problem. Panel members will discuss their experience and “best practices” to reduce th...

Join Forrester and Red Hat for an insightful discussion on why the adoption of Red Hat® Enterprise Linux continues to gain traction as organizations consider their long term IT strategy. Over the past decade, Linux® has become the go to choice for IT departments. It has expanded beyond datacenter use cases to include cloud and edge deployments for those working to migrate workloads or modernize their IT environments. Enterprise Linux b...

OASIS+ is here! It will provide the first highly visible test of the contracting community’s response to the call for more rigorous cybersecurity. Read the requirements of OASIS+, and you’ll see that your company needs pre-award C-SCRM – proof of your cybersecurity compliance. These requirements are the same ones that are currently necessary for all government contracts and are equivalent to CMMC Level 1. What does that mean...