The National Security Agency, in partnership with the Cybersecurity and Infrastructure Security Agency, has released a list of its top 10 mitigation strategies that organizations should take to enhance the security of their cloud
More
The National Institute of Standards and Technology issued a special publication on integrating the security of software development life cycles into continuous integration/continuous delivery pipelines of organizations’ cloud-native applications. SP 800-204D aims
More
The Defense Counterintelligence and Security Agency has released an industry security letter, or ISL, clarifying the process for verifying government contracting activity authorization for the use of commercial cloud services — a.k.a.
More
The Federal Risk and Authorization Management Program has listed some actions it requires CSPs, or cloud service providers, to perform in response to an emergency directive released by the Cybersecurity and Infrastructure
More
A study conducted by the Government Accountability Office found that some federal agencies have been using cloud services that were not covered by the Office of Management and Budget’s Federal Risk and
More
The Department of Defense has released a memorandum providing guidance on how the Federal Risk and Authorization Management Program Moderate equivalency applies to cloud service offerings that are used for processing, transmitting
More
The General Services Administration is expanding market research for the cloud-focused Ascend blanket purchase agreement. In doing so, the agency is accepting questions, recommendations and feedback on a draft performance work statement (PWS)
More
The CIO Council’s Enterprise Operations Committee and the General Services Administration’s IT Modernization Division have released new guidance to help federal agencies manage and optimize their cloud operations. The Cloud Operations Best
More
Graham Steele, assistant secretary for financial institutions at the Department of the Treasury, said the department is working with cloud service providers — a.k.a. CSPs — like Amazon Web Services to support
More
The U.S. Army Network Enterprise Technology Command has worked with other Army components and Microsoft to support the service branch’s full-scale migration to Army 365. Under the collaboration, the team successfully developed and implemented
More