Policy & Procurement

Government policy and regulation regarding the procurement and use of cloud computing technologies is still in its nascent stages. This portion of the SafeGov.org site focuses on current policy and procurement issues related to cloud adoption in the public sector, including analyses of Federal, state, and local issues, developments in higher education, and related laws, regulations, and directives. We also follow US and EU antitrust actions relating to the Technology sector.

he Balancing Act: Government Security In The Cloud

Lance Dubsky, Dark Reading,  Wednesday, May 4, 2016

Like many of you, I was there at the birth of the cloud. I watched the evolution in the private sector and have supported adoption in the public sector, which is taking much longer, due to the time it takes government to innovate and implement new technology. Few government CIOs have been able to overcome this challenge. Contrast that to the experience in the private sector, where cloud computing has resulted in in cost savings and increased efficiency for many industries. Early adopters’ ability to change and adapt quickly to the cloud fueled their success but that same process has stymied many large government IT organizations.

IBM’s new cloud-based quantum computer targets healthcare, government, finance – and everyone

Bernie Monegain, Healthcare IT News,  Wednesday, May 4, 2016

IBM is making quantum computing available to the public, providing access to a platform from any desktop or mobile device via the IBM Cloud. It has implications for healthcare, where another supercomputer, IBMWatson, is already at work helping researchers and clinicians eradicate cancer, making sure the world’s population gets better sleep and sorting big data to boost genomics work and precision medicine.

Rise in IoT pushes government agencies to rethink security

Ryan Matthew Pierson, ReadWrite,  Tuesday, May 3, 2016

It used to be protecting your network meant keeping track of the desktop and laptop computers that access it. Then, smartphones came onto the scene, and now wearables and other IoT devices as well as the cloud computing are making it harder than ever to keep up. IoT and the cloud have both become hot-button issues in the world of information technology as good security practices are no longer just a matter of securing a single system, but every third-party system that it has connected to it, as well. “Government institutions are seeing digital transformation at an unprecedented scale, but those changes come at the price of ever-evolving security risks,” said Maria Horton, CEO of EmeSec and former CIO of the National Naval Medical Center.

On the importance of data privacy to cloud deals: Some benchmarks

Paula Barrett, IAPP Privacy Perspectives,  Tuesday, May 3, 2016

The report demonstrates that deals are in fact failing because of data privacy concerns, with both customers and suppliers choosing to walk away because of data-related concerns. Indeed amongst other notable statistics the top three reasons were data privacy and security related. Meanwhile, the commercial appetite for cloud surges and the regulatory position gets ever more complex. So this report provides some hard evidence to help customers and providers understand the importance these issues now carry and hopefully act accordingly to achieve successful conclusions.

What really goes on inside the FedRAMP office

,  Tuesday, May 3, 2016

As director of the Federal Risk and Authorization Management Program, Goodrich is at the bustling, bureaucratic center of the federal government's cloud market.

With Microsoft’s trusted Cloud, startups and ISVs are building a safer, secure digital world

Sindu Mv, YourStory.com,  Monday, May 2, 2016

A trusted Cloud partner bridges the gap between innovation and security concerns. The right partner, technology, and processes, can help the most complex enterprise move to the Cloud with confidence. Against this backdrop, Microsoft brought together eminent security leaders for an exclusive event on April 20, to help organisations in India understand cyber risks based on industry standards and to remediate current security gaps. The summit reiterated Microsoft’s commitment to helping organisations deal with security challenges. Leaders including; Capt. Raghu Raman, President Risk, Security & New Ventures – Reliance Industries and former CEO of NATGRID; Burgess Cooper, Partner – Information & Cyber Security – E&Y, spoke extensively on cyber security. Kevin Turner set the tone of the summit with his keynote address, highlighting how we are a part of the fourth industrial revolution and how digital disruption is driving massive business disruption. He also emphasised how Microsoft is differentiating with security and privacy.

Microsoft & Google alleviate cloud fears with data privacy and security certifications

James Nunns, CBR,  Friday, April 29, 2016

Security continues to be a hot topic for public cloud vendors as concerns around meeting regulatory demands, and securing data against breaches remain a core consideration around whether or not to move to the cloud. As vendors such as Microsoft create more cloud-based services it is necessary for them to prove the security of them. Both Microsoft and Google have received boosts in this area by achieving certifications for security and privacy standards. Microsoft for starters, has revealed that its Azure ML service for predictive analytics with machine learning has achieved the standard ISO 27001 and the EU Model Clauses, as well as others.

Hybrid Cloud Environments Offer Federal Agencies the Best of Both Worlds

Bob Kirby, FedTech,  Friday, April 29, 2016

By embracing a hybrid clouds, agencies can put highly sensitive information in private clouds while using public clouds for low-cost storage.

Agencies increasingly see the cloud’s silver lining

Josh Jaquish, GCN,  Thursday, April 28, 2016

The openness to new technology is a shift for a sector that has traditionally felt that “serving the common good” meant ensuring data security via private networks. Perhaps the openness to new technology can be attributed to concerns stemming from high-profile data security breaches of recent years -- JP Morgan Chase, Target and even the U.S. government -- being several examples.

Intelligence community launches classified marketplace for cloud technology

Jared Serbu, Federal News Radio,  Thursday, April 28, 2016

The U.S. intelligence community has just opened a new marketplace for cloud applications, the idea being to let analysts and developers test-drive thousands of commercial data analytic tools for a pittance and without waiting for their agencies to make large commitments of time and money via usual government procurement channels.