Cloud Computing: New DoD Rules For Contractors Focus On Enhancing Security and Incident Response

Grazed from CTOVision. Author: Bob Gourley.

On 26 August 2015 the Department of Defense (DoD) published a new rule entitled the "Defense Federal Acquisition Regulation Supplement: Network Penetration Reporting and Contracting for Cloud Services (DFARS Case 2013-D018). You can read the details of this new rule here:

This rule represents a significant expansion of the mandate on defense contractors and their subcontractors to protect information and report on breaches. The rule is in immediate effect. It was promulgated with urgency and all contractors and subcontractors are expected to take this with the required amount of seriousness...

What the FAA’s $100 million cloud investment means for the industry

Grazed from ITProPortal.  Author: Brian Brinker.

In a big move earlier this week, the Federal Aviation Authority (FAA) inked a deal worth more than a hundred million dollars with Computer Sciences Corporation to provide cloud computing services.  The deal generated quite a bit of news coverage earlier this week, but we want to take a moment to explain why this is such a big development and what it could mean for the cloud computing industry.

Over the past few years the Federal government has emerged as one of the most aggressive proponents of cloud technologies, and numerous federal agencies have begun to move data and services into the cloud.  It should come as no surprise then that the Federal Aviation Authority has a big interest in cloud computing...

DoD, GSA consider new contract vehicle for commercial cloud

Grazed from FederalNewsRadio.  Author: Jared Serbu.

The General Services Administration and the Defense Department are working together on a possible new contract vehicle to help federal agencies buy commercial cloud computing services.

Nothing’s final yet, but the talks, between GSA’s Office of Integrated Technology Services (ITS) and the Defense Information Systems Agency could result in a multiple award contract solely for cloud, perhaps similar to GSA’s Networx contract, which lets agencies buy telecommunications services with pre-existing service level agreements...

The US Federal Aviation Administration's hybrid cloud plans take flight with help from CSC

Grazed from ComputerWeekly. Author: Caroline Donnelly.

The US Federal Aviation Administration (FAA) has selected IT services firm CSC to oversee its plans to downsize its datacentres and migrate its systems to the hybrid cloud. The $108m deal is set to last 10 years and will see CSC contracted to help the FAA consolidate its datacentre estate, migrate its data and systems off-premise and provide it with access to a range of cloud services from the likes of Microsoft and Amazon Web Services (AWS).

The FAA is the US body responsible for safe-guarding America’s aerospace and running its air traffic control operations. The FAA said in a statement that downsizing its datacentre footprint and moving more of its IT to the cloud will help the organisation save money and become more flexible...

Cloud Computing: DoD new cyber security reporting rules for contractors

Grazed from Lexology. Author: Davis Wright Tremaine.

In a move that highlights the changing winds of federal cybersecurity policy, the Department of Defense (“DoD”) has issued an interim Rule (“Rule”) that imposes new security and reporting requirements on federal contractors, and new requirements for DoD cloud computing contracts.

The Rule requires federal contractors to report cyber incidents that result in an actual or potentially “adverse affect” on covered defense information (CDI), a covered contractor information system (a federal contractor’s information system that handles CDI), or on a contractor’s ability to provide operationally critical support. CDI includes “controlled technical information, export controlled information, critical information, and other information requiring protection by law, regulation or Government-wide,” but does not include classified information which is governed by a separate rule. The Rule also imposes restrictions on cloud computing contracts, including that data covered by the contracts be maintained within the 50 states...

FAA moves away from owning data centers, to the Cloud

Grazed from IntelligentAerospace.  Author: Courtney Howard.

Federal Aviation Administration (FAA) officials, wanting to benefit from advanced computing solutions in the Cloud, awarded a $108 million, 10-year contract to CSC Government Solutions, which will lead an overall integration effort to include Amazon Web Services, Microsoft Azure, and other leading Cloud providers.

The contract enables the FAA to take advantage of Cloud technologies, such as Software As-A-Service, Platform As-A-Service, Infrastructure As-A-Service, and Colocation in a highly secure and resilient environment, officials say.  Being in the Cloud will give the FAA on-demand, pay-per-use computing and data storage over a secure FTI connection. The move away from FAA-owned data centers to outsourced locations will increase efficiencies and flexibility while saving time and money and simplify information-sharing...

DoD implements stricter cyber incident oversights, cloud computing guidelines

Grazed from FierceGovernmentIT. Author: Robert Bartley.

The Defense Department Wednesday initiated two sets of policies to enforce stricter guidelines when dealing with about 10,000 contractors the department trusts with offsite cyber information. One part of the interim rule, called "Defense Federal Acquisition Regulation Supplement: Network Penetration Reporting and Contracting for Cloud Services," will amend the DFARS to include mandates passed in recent Defense funding bills for stricter contractor reporting rules on cyber incidents.

According to the issuance, this is part of a greater effort to streamline contractor incident reports. For their part, the National Defense Authorization Acts from two of the last three years sought to require more DoD oversight on contractor systems during potential cyberattacks. The NDAA from fiscal year 2013 (pdf) requires that cleared defense contractors report network penetrations to DoD...

SEC CIO leads efforts to move agency to the cloud

Grazed from CIO. Author: Kenneth Corbin.

Pamela Dyson is shepherding a determined, if incremental, effort to move her agency's applications to the cloud. Dyson was named the CIO at the Securities and Exchange Commission in February, after having joined the agency in 2010, when she joined an ambitious initiative to modernize and improve efficiencies in the SEC's IT infrastructure.

Dyson shared her thoughts on the cloud-enabled Software-as-a-Service (SaaS) model during a recent presentation hosted by Federal Computer Week, explaining that the SEC's Office of Information Technology holds out four overarching IT priorities: modernizing its aging infrastructure, improving business agility, harnessing big data and analytics, and what Dyson calls digital transformation -- updating applications and access to better serve end users...

Government CIOs fret over apps reliability in the cloud

Grazed from CIO.  Author: Editorial Staff.

Government CIOs in states and local districts increasingly are looking to push applications to the cloud, but security and a reliable user experience remain principal challenges, a new survey reports.

Akamai, which provides a leading online content delivery network, tapped the Center for Digital Government to canvas state and local government IT workers to gauge their technology priorities and concerns, finding that poor user experience is a major obstacle for the spread of e-government services.  Government CIOs are struggling to meet rising expectations among consumers for what level of service a website should deliver, and 70 percent of the respondents in Akamai's survey said that a consistent user experience is an "unmet need."...

US Air Force Takes To The Cloud With Office 365

Grazed from TechAeris.  Author: John Vincent.

The United States Air Force. Cloud computing. The pun-filled headlines virtually write themselves. However we’ll try to refrain from being too punny.  Last week, the Air Force, in partnership with the Defense Logistics Agency (DLA), announced that it awarded more than 100,000 seats of a Department of Defense dedicated version of Microsoft Office 365 to Microsoft, Dell and General Dynamics.
As part of the deployment, which will begin in the next government fiscal year, the Air Force will have access to secure e-mail, calendaring, Office Web Applications, Skype for Business, and other important collaboration tools, helping the agency communicate more easily across active, civilian, and reserve personnel and move toward a consolidated mobile and messaging platform. Just as important, the Air Force anticipates that the migration will help it realign critical resources to better support its mission in a trusted cloud environment...