FedRAMP

FedRAMP Announces Update to Plan of Actions and Milestones Template

The Federal Risk and Authorization Management Program has added two new columns to the Plan of Actions and Milestones template to help agency partners track findings related to the Cybersecurity and Infrastructure

More

by Jane Edwards

June 30, 2022

Cybersecurity/News

CISA Posts Updated Cloud Security Technical Reference Architecture

The Cybersecurity and Infrastructure Security Agency has released the second version of “Cloud Security Technical Reference Architecture” in an effort to provide guidance for secure cloud migration. CISA said Thursday the document

More

by Christine Thropp

June 24, 2022

Government Technology/Industry News

Devo Technology Drives New Contracts, Public Sector Partnerships; GM Dan Wilbricht Quoted

Devo Technology announced on Monday that since the cloud-native logging and security analytics company was designed as “In-Progress” for full authorization through the Federal Risk and Authorization Management Program (FedRAMP) back in

More

by William McCormick

May 24, 2022

Government Technology/News

FedRAMP Gets 1st System Security Plan in Machine-Readable OSCAL Format

The Federal Risk and Authorization Management Program has received from a cloud service provider the first system security plan in a machine-readable format called Open Security Controls Assessment Language. FedRAMP expects the

More

by Jane Edwards

May 20, 2022

Industry News/GovCon Expert

Palo Alto Networks Achieves FedRAMP Authorization for IoT Security Solution; GovCon Expert Dana Barnes Quoted

Palo Alto Networks announced on Thursday that the company’s IoT Security solution has achieved Federal Risk and Authorization Management Program (FedRAMP) Moderate Authorization. “As cyberattacks become more frequent and sophisticated, the IoT Security

More

by William McCormick

April 21, 2022

Government Technology/News

DISA Authorizes CrowdStrike Platform for Controlled Unclassified Defense Info Protection

The Defense Information Systems Agency (DISA) has cleared a cloud-based CrowdStrike technology product to support cybersecurity of the Department of Defense’s controlled unclassified data. CrowdStrike received one-year provisional authorization to operate that

More

by Mary-Louise Hoffman

April 8, 2022

General News/News

FedRAMP Presents Requirements for Annual CSP Assessments

The Federal Risk and Authorization Management Program has laid out requirements for cloud service providers and third-party assessment organizations with regard to completing annual assessments. FedRAMP said Wednesday it requires CSPs to

More

by Nichols Martin

March 21, 2022

Government Technology/News

FedRAMP: CISA Directive Covers Cloud Providers Maintaining Federal Data

The Federal Risk and Authorization Management Program has announced that cloud service providers that maintain federal information are covered by a binding operational directive issued by the Cybersecurity and Infrastructure Security Agency.

More

by Jane Edwards

March 9, 2022

Cybersecurity/News

Senate OKs Strengthening American Cybersecurity Act

The Senate has approved a legislative package that would direct critical infrastructure operators and owners and federal civilian agencies to report major cyberattacks and ransomware payments to the Cybersecurity and Infrastructure Security

More

by Jane Edwards

March 4, 2022

Cybersecurity/News

FedRAMP Tasked to Ensure Vulnerability Testing on Commercial Cloud Systems Under Zero Trust Strategy

The Federal Risk and Authorization Management Program received in January its role in the implementation of a zero trust approach to cybersecurity across the federal government. Citing an Office of Management and

More

by Angeline Leishman

March 3, 2022