Access "Are FedRAMP security controls enough?"
This article is part of the June 2013 / Volume 15 / No. 5 issue of The rapid evolution of MDM solutions
The U.S. government information technology strategy is out, and it’s clear that cloud-based platforms are now preferred over traditional, on-premise servers. The message is so strong that the strategy is referred to as “Cloud First.” Many businesses are struggling with how to assess and mitigate risks when using cloud service providers—the federal government is no different. It has developed a new methodology to help federal departments in their evaluations of cloud service providers in order to facilitate “a buy once, use many times” strategy. The Federal Risk and Management Accreditation Program (FedRAMP) is being jointly developed in coordination with multiple government entities and the private sector. It is based on a conglomeration of existing security standards including FISMA, NIST-800 and FIPS-199 in order to keep the cost of developing this new assessment tool under control. The goal is to build a catalog of pre-screened cloud service providers from which government agencies can select while reducing the cost of multiple assessments. There is a ... Access >>>
Premium Content for Free.
MDM products: More calls to secure a mobile workforce
by Philip Clarke
As MDM products rapidly evolve to support the growth of BYOD smartphones and tablets, security professionals need to rethink mobility policies.
Are FedRAMP security controls enough?
by Joseph Granneman
Cloud service providers are working with authorized third-party auditors to meet FedRAMP security controls. The 3PAOs tell us how it’s going, so far.
- MDM products: More calls to secure a mobile workforce by Philip Clarke
Big data analytics: New patterns emerge for security
by Kathleen Richards
Will big data analytics make security better? With data scientists in short supply, solution providers rush to provide big data analytics tools.
- Big data analytics: New patterns emerge for security by Kathleen Richards
Diversity at work: MDM solutions keep pace
by Kathleen Richards
Philip Clarke, co-leader of the Wireless and Mobility track at Nemertes Research, reports on what’s ahead for mobile device management solutions.
McGraw: Financial services develop a proactive posture
by Gary McGraw, Contributor
The idea behind proactive security is simple: build security in the first time by following security models like BSIMM and security engineering.
Staff infection: IT security education is contagious
by Doug Jacobson, Julie A. Rursch
If bad attitudes are spreading across the IT staff like germs, better IT security education may just be the cure.
- Diversity at work: MDM solutions keep pace by Kathleen Richards
More Premium Content Accessible For Free
Threat intelligence and risk: Why cybersecurity hangs in the balance
As more security professionals take on greater roles in global risk management, Global 2000 companies are investing in cybersecurity measures above ...
How to respond to the latest distributed denial-of-service attacks
All indications show that DDoS attacks are increasing in variety, number and size. No network system is immune and information security pros can't ...
Figuring out FIDO as the first products emerge
The Fast Identity Online (FIDO) standards reached the public draft stage in February, and the first deployments of FIDO-ready technologies followed ...