Join the Cloud Safe Task Force (CSTF) to develop Whole-of-Government approaches to improve US cloud security. At its March 19, 2024 meeting, the Task Force will take up Cloud Safe initiatives in measures, metrics, and monitoring for cloud security. The Task Force is looking for demonstrations and innovations in cloud security focused metrics and real-time monitoring. During this session, we’ll facilitate an open discussion of top metrics...

In today’s increasingly interconnected digital era, our nation faces unprecedented cyber risks. Despite the apparent simplicity of our world, technology continues to grow more intricate, amplifying the threats we encounter. Both external and internal cyber threats are escalating, compounded by reductions in IT budgets redirected to support global conflicts. Our digital supply chains, reliant on IT infrastructure, are prime targets for ha...

The cybersecurity landscape has undergone significant transformations resulting in compliance regulations mandating the adoption of the NIST Secure Software Development Framework framework, with a special emphasis on implementing a Software Bill of Materials (SBOM). In this discussion, we will explore the importance of perceiving cybersecurity as a mission-centric challenge that extends beyond mere compliance checklists. Join us as we discuss...

In an era of escalating cyber threats, a proactive approach is essential. This panel will highlight how zero trust principles can be augmented by comprehensive visibility and advanced analytics. By monitoring user behaviors, network traffic, and device activities, federal agencies can gain real-time insights into potential threats, swiftly detecting anomalies and unauthorized activities. This approach empowers agencies to respond promptly to s...

Federal agencies need more support to implement modern monitoring tools that help improve their threat detection and response. But how can agencies achieve the resilience required for today’s cyber threats? It starts with prioritizing an observability strategy. In this webinar, experts will discuss the importance of an observability strategy to improve SIEM performance and costs, optimize security information and event management, and ho...

A collection of presentations covering various topics including: Evolution of IT Leadership: Navigating Technological Transformation Strategic Planning for Resilience: Federal Leaders’ Response to Cybersecurity Challenges Data-Driven Governance: Leveraging Analytics and AI for Informed Decision-Making Federal IT Leadership in 2024 and Beyond: C-Level Strategies and the CIO’s Role

Since its launch in 2011, FedRAMP has become the best practice for selecting, deploying, and managing cloud systems and applications in the U.S. Federal Government. And in January 2023, the FedRAMP Authorization Act made FedRAMP the law of the land! Now, Rev 5 of FedRAMP brings unprecedented levels of automation and continuous monitoring to this industry leading approach enabling faster submissions and authorizations. The key to these new leve...

Insider Risk Programs have continued to evolve naturally over the past 20 years. They have grown exponentially beyond the traditional lens of trying to identify spies through cyber-focused data exfiltration events. Today, Insider Risk Programs have expanded to include internal HR, legal, and compliance stakeholders within organizations and have expanded security beyond strictly physical and cyber domains to now include analysts, investigators,...

Participate in an insightful panel discussion as we delve into the crucial topic of federal software supply chain modernization and compliance standards for Software Bill of Materials (SBOMs) in line with The President’s Executive Order 14028. This webinar aims to address the challenges faced by federal agencies, share best practices, explore avenues for improving efficiencies, and establish a compliance standard for SBOMs in the softwar...

Federal agencies must undergo the complex and laborious process of security authorization to operate (ATO) for each information system (IS) in accordance with the Federal Information Security Modernization Act (FISMA). Currently, most agencies rely on manual documentation processes. These include popular productivity tools to capture the applicable security controls and the status/plans of implementation of the controls for each IS as well as...