Around Town

Cloud: Are we there yet?

Image from Shutterstock.com

Where:

AFCEA Bethesda 2014 Cloud Technology Symposium

Who:

Maria Roat, director of FedRAMP, General Services Administration

Kevin Dulany, risk management division chief, Defense Department

James Pyon, vice president, CGI Federal

Greg Bateman, senior director of acquisition programs, Microsoft

Why:

Roat's office at GSA’s Office of Citizen Services and Innovative Technologies was in a frenzy leading up to the June 5 FedRAMP deadline. That date has come and gone, but Roat warned there is still much work ahead to ensure security and consistency for agencies in the cloud.

One of the main purposes of FedRAMP is to simplify the cloud certification process for both agencies and cloud providers, and create consistency in how the parties work together to develop solutions and standards.

Roat said her office often has cloud providers coming in and saying that they’re working with three agencies, and they’re all trying to do something different. That’s where Roat's team comes in; it facilitates a conversation between the three agencies, and looks for opportunities to make everyone’s life a little easier in working with providers.

"We're working to follow the 'Do once, use many times' method," Roat said.

So what is the next year of FedRAMP going to look like? While one audience member asked about 'FedRAMP 2.0,' Roat said that term seems to have appeared out of thin air. It’s not a matter of going from 1.0 to 2.0, she said -- FedRAMP has simply become fully operational.

CGI Federal's Pyon agreed. "In the next year, hopefully we are not talking about the same things we did today," he said. "By then it should be routine, and we should be looking at it from a risk, security and data perspective."

Yet real progress has already been made, Roat and the other panelists stressed, particularly with continuous monitoring to ensure the security of data in the cloud.

"Continuous monitoring as a whole has made the environment more secure," Roat said. "The amount of detail and the rigor we have gone through with cloud providers -- we’re forcing that function of risk and CM documentation."

Looking forward, Dulany said he would like to see industry play more of a role in creating standards -- a move he said would take the weight off of government to create standards on cloud services.

About the Author

Colby Hochmuth is a former staff writer for FCW.

Rising Stars

Meet 21 early-career leaders who are doing great things in federal IT.

Featured

  • SEC Chairman Jay Clayton

    SEC owns up to 2016 breach

    A key database of financial information was breached in 2016, possibly in support of insider trading, said the Securities and Exchange Commission.

  • Image from Shutterstock.com

    DOD looks to get aggressive about cloud adoption

    Defense leaders and Congress are looking to encourage more aggressive cloud policies and prod reluctant agencies to embrace experimentation and risk-taking.

  • Shutterstock / Pictofigo

    The next big thing in IT procurement

    Steve Kelman talks to the agencies that have embraced tech demos in their acquisition efforts -- and urges others in government to give it a try.

  • broken lock

    DHS bans Kaspersky from federal systems

    The Department of Homeland Security banned the Russian cybersecurity company Kaspersky Lab’s products from federal agencies in a new binding operational directive.

  • man planning layoffs

    USDA looks to cut CIOs as part of reorg

    The Department of Agriculture is looking to cut down on the number of agency CIOs in the name of efficiency and better communication across mission areas.

  • What's next for agency cyber efforts?

    Ninety days after the Trump administration's executive order, FCW sat down with agency cyber leaders to discuss what’s changing.

Reader comments

Please post your comments here. Comments are moderated, so they may not appear immediately after submitting. We will not post comments that we consider abusive or off-topic.

Please type the letters/numbers you see above

More from 1105 Public Sector Media Group