This event is free and open to all. Please email [email protected] for the calendar ‎invitation.‎

(Federal News Network) The Agriculture Department and the General Services Administration have been out in front of the federal government’s move to the cloud for a decade.

USDA was among the first agencies to take their email to cloud in 2010. It also was the first agency to test out the IT Centers of Excellence, which included a specific focus on data center consolidation and cloud adoption.

(Nextgov) The Information Technology Industry Council, which represents dozens of large tech firms, offered recommendations Wednesday to the Office of Management and Budget regarding draft guidance on zero-trust cybersecurity architectures the agency published in early September.

The guidance sought public comment on an overarching federal policy from OMB as well as draft technical reference architecture and maturity model from Cybersecurity and Infrastructure Security Agency. The guidance followed President Biden’s May executive order on strengthening cybersecurity across the federal government, calling out numerous specific tools and tactics based on the concept of zero trust.  

(MeriTalk) At the highest levels of the Federal government and the private sector, officials have recognized that cybersecurity is a national security issue. A series of policy and technical documents and high-level meetings this year have reinforced this notion. Chief among them is President Biden’s cybersecurity executive order (EO), which outlines a wide-ranging and ambitious series of actions Federal agencies must take to better secure government operations. MeriTalk recently talked with Jim Richberg, field chief information security officer at cybersecurity firm Fortinet, who is uniquely qualified to assess the potential impact of the cybersecurity EO and the actions that agencies must take to realize its promise. Prior to joining Fortinet, Richberg was the senior federal executive focused on cyber intelligence within the U.S. intelligence community. He helped build the discipline of cyber threat intelligence analysis and is an innovator in measuring cyber performance, risk, and return on investment.

(The Hill) The FBI, the National Security Agency (NSA), and the Cybersecurity and Infrastructure Security Agency (CISA) on Wednesday issued a warning to U.S. organizations to be aware of a specific type of ransomware that has already wreaked havoc on hundreds of groups.

The agencies issued a joint alert specifically warning groups to be on guard against the Conti ransomware variant, with the agencies noting that 400 U.S. and international groups had already fallen victim to Conti.

(MeriTalk) In this era of political division, technology can be a unifier. While only 15 percent of Americans say they trust the Federal government to do what is right for them and their families all or most of the time, the vast majority (68 percent) say Federal spending on technology is worth the investment. That sentiment crosses party lines, with 79 percent of Democrats, 56 percent of Republicans, and 60 percent of independents in agreement.

(Nextgov) The Commerce Department is actively recruiting candidates to serve on the government’s newly-formed National Artificial Intelligence Advisory Committee, or NAIAC—where they’ll inform President Joe Biden and agencies on issues raised by the emerging technology.

At least nine members will serve up to two consecutive three-year terms on the committee, according to a recently released call for nominations. The National Institute of Standards and Technology is charged with providing administrative support to the high-level group.

(FCW) President Joe Biden has nominated John Sherman, the Defense Department's acting CIO, to hold the top tech job on a permanent basis.

Sherman was named DOD's principal deputy CIO in 2020 and has been acting in the CIO role since January. Under his leadership at DOD, Sherman has overseen major enterprise initiatives from the coronavirus pandemic-spurred commercial virtual remote telework capability to the cancellation and pivot of the embattled Joint Enterprise Defense Infrastructure cloud contract.

Sherman, who has spent 25 years in national security, was previously the CIO for the intelligence community in the Office of the Director for National Intelligence during the Trump administration. He also served as the deputy director for the CIA's Open Source Enterprise and as a deputy national intelligence officer on the National Intelligence Council.

(Nextgov) Hundreds of individuals have paid for their place in line to take an exam that would qualify them to perform cybersecurity assessments of defense contractors that may no longer be necessary after the department reexamines its Cybersecurity Maturity Model Certification program.

Under the current system, defense contractors can simply declare—or “self-attest”—their adherence to cybersecurity controls outlined by the National Institute of Standards and Technology. With an interim rule issued Sep., 2020, CMMC would institute third-party verification of the cybersecurity practices—depending on five levels of risk—given the continued loss of intellectual property to Chinese hackers, officials said.

(ExecutiveGov) The Office of Personnel Management (OPM) has agreed to the National Academy of Public Administration’s (NAPA) recommendation to Congress to provide more funding that will support OPM's information technology modernization efforts, FedScoop reported Monday.

OPM recently released its response to the congressionally mandated report of NAPA, which urged the agency to prioritize IT modernization and ask for resources from the lower house for the development of its digital platforms and programs. 

(StateScoop) The COVID-19 pandemic accelerated the pace of modernization in cities of all sizes around the country over the past 18 months. But to take the next step in their digital transformation efforts — to enable innovations like new digital services, data-driven decision making and connected infrastructure — local government technology leaders say there’s a few common key elements, like universal network connectivity and robust data analytics platforms, that are foundational to their IT modernization strategies.

(Nextgov) Unsurprisingly, the key topic of discussion around the FITARA 12.0 Scorecard was cybersecurity. Few agencies are doing it well, many don’t have the strongest cyber posture, and improvement is needed throughout the federal government.

Agencies are under a sharper political and regulatory microscope and are being pushed to engineer better defenses. During the FITARA hearing on July 28, while the agency’s overall scores were positive, cybersecurity grades were harsh: only two agencies scored A grades, five received B grades, eight earned C grades, seven received D grades, and one agency earned a failing grade.

And, a recent bipartisan Senate report found that two years after a 2019 report on federal agency cybersecurity, there are still systemic failures at several agencies when it comes to safeguarding data.

(AWS Public Sector Blog) On May 12, 2021, President Biden released the “Executive Order on Improving the Nation’s Cybersecurity.” The executive order followed a series of high-profile information security attacks and ransomware incidents targeting the public and private sector. President Biden’s executive order emphasizes the need to elevate information security as a core tenet of national security, and calls on federal agencies and public sector organizations to work with the private sector to prioritize the data security and privacy of the American people and government. Amazon Web Services (AWS) and AWS Partners can help government agencies align with the initiatives in this executive order.

(FedScoop) VMware has received a Federal Risk and Authorization Management Program (FedRAMP) High authorization for its VMware Cloud product.

VMware partnered with Amazon Web Services and leveraged its AWS GovCloud infrastructure to receive the authority to operate, making it easier for agencies across government to use its virtualization and multi-cloud offerings for sensitive workloads.

The U.S. Marshals Service sponsored VMware’s FedRAMP authorization process, which began in March of 2019, according to the FedRAMP Marketplace.

If you would like to have your story featured in ADI's Member News, please contact ADI's Policy & Communications Manager, Jaishri Atri.