Emerging Technology
PR Newswire | January 24, 2024
CGI Federal Inc., the wholly-owned U.S. operating subsidiary of CGI Inc., today announced that its Sunflower asset management cloud solution has received approval from FedRAMP, certifying CGI's cloud-based, software-as-a-service (SaaS) solution for use across federal government agencies in the U.S.
CGI's Sunflower cloud solution is a proven, built-for-federal capability that enables management of client property, including federal property, personal property and IT assets. Currently enabling management of 4.2 million client assets at over 75 federal entities, Sunflower asset management solutions provide clients with improved efficiency, software standardization and predictable costs, balancing client needs for flexibility and functionality. Many of the agencies currently using Sunflower today have authority to operate in cloud infrastructure environments.
"For federal asset and financial managers confronting the challenges posed by cybersecurity, cloud modernization and digital transformation, Sunflower empowers organizations to improve decision-making, accountability and transparency," said John B. Owens II, Senior Vice President Consulting Delivery, Federal Solutions Group, CGI. "Sunflower's listing as a FedRAMP-approved solution provides federal IT decisionmakers with additional confidence that CGI cloud technologies meet the highest security and compliance standards for mission-critical government entities."
FedRAMP is a government-wide program that promotes the adoption of secure cloud services across the federal government by providing a standardized approach to security and risk assessment for cloud technologies and federal agencies. As one of the most stringent compliance processes an IT provider can undertake, FedRAMP includes an in-depth examination of a solution's data security and data governance capabilities, as well as the security practices of its cloud services.
About CGI Federal
CGI Federal Inc., a wholly-owned U.S. operating subsidiary of CGI Inc., is dedicated to partnering with federal agencies to provide solutions for defense, civilian, healthcare, justice, intelligence, and international affairs missions. Founded in 1976, CGI Inc. is among the largest independent IT and business consulting services firms in the world. With 91,500 consultants and professionals across the globe, CGI Inc. delivers an end-to-end portfolio of capabilities, from strategic IT and business consulting to systems integration, managed IT and business process services and intellectual property solutions. CGI Inc. works with clients through a local relationship model complemented by a global delivery network that helps clients digitally transform their organizations and accelerate results. CGI Inc. Fiscal 2023 reported revenue is C$14.30 billion and CGI Inc.
Read More
Emerging Technology, Government Finance
PR Newswire | January 04, 2024
True Elements, the leader in Water Intelligence, and Carahsoft Technology Corp., The Trusted Government IT Solutions Provider®, today announced a partnership. Under the agreement, Carahsoft will serve as True Elements' Master Government Aggregator®, making the company's industry-leading Water Intelligence SaaS solutions and data sets available to the Public Sector through Carahsoft's reseller partners and NASA Solutions for Enterprise-Wide Procurement (SEWP) V, National Cooperative Purchasing Alliance (NCPA) and OMNIA Partners contracts.
"The partnership with Carahsoft will provide Water Intelligence to Public Sector agencies, enabling them to better understand current water challenges and effectively prepare for a very different water future," said Kim Patrick Kobza, CEO of True Elements. "The key is to provide agencies with dynamic workflow solutions that are cost effective and easy to procure so they can succeed in assessing the present and forecasting the future. With Carahsoft as a partner, we can accomplish our mission to ensure all agencies have the best decision support available when responding to rapidly changing climate conditions."
The Value of Water Intelligence
Water Intelligence is a unique combination of state-of-the-art technology, scientific analysis and AI capabilities that continuously aggregates, synthesizes and transforms expansive amounts of complex water data into easily understandable, increasingly precise analyses and forecasts via scores and visualizations. These analyses and forecasts produce deep, clear insights that help decision-makers better understand water resources to make fully informed decisions about how to manage and optimize resources.
Water Intelligence Helps Public Sector Leaders Ensure a Water-Resilient Future
Changing weather patterns are creating climate crises across the globe. Ninety percent of those crises are experienced through water. True Elements' SaaS solutions and data sets quickly and easily provide Public Sector leaders with in-depth insights necessary for fully informed, confident decision-making to address water challenges at the local, regional and national levels.
Insights into current water quality and quantity challenges (pollution, demographic considerations, etc.) as well as future disruptive events or long-term changes to water resources (drought, sea level rise, flood risk, etc.) help Government leaders make the strategic decisions necessary to ensure their organizations, assets, operations and communities can adapt and thrive in a climate with rapidly changing hydrologic cycles. True Elements' Water Intelligence platform easily, efficiently and cost-effectively delivers the understanding decision makers need with color coded scores and visualizations.
"The Public Sector is currently facing water-related challenges that are expected to increase in number and severity if left unaddressed," said Harjeet Khalsa, Sales Director, Google ISV Ecosystem at Carahsoft. "Through collaboration with our reseller partners and the addition of True Elements' Water Intelligence solutions to our offerings, Government agencies are empowered to procure the resources necessary to proactively address existing water related challenges and work toward a water-resilient future."
True Elements, integrated within Google Cloud Marketplace, is now available through Carahsoft and Google's partner ecosystem. This collaboration simplifies procurement for Government agencies, granting seamless access to their Water Intelligence solutions powered by Google's robust infrastructure, ensuring efficient decision-making tools for addressing water challenges.
About True Elements
True Elements provides the deep, clear Water Intelligence leaders need to clarify water complexity and make accurate, effective decisions to address their current and future water challenges. True Elements applies a sophisticated, scientific and AI lens to multiple layers of disparate watershed data, producing reliable analysis, forecasting, and holistic insights into watershed dynamics. True Elements' Water Intelligence platform delivers insights through a fast, easy, cost-effective process and provides color-coded scores and visualizations that ensure clear understanding and communication to drive action.
About Carahsoft
Carahsoft Technology Corp. is The Trusted Government IT Solutions Provider, supporting Public Sector organizations across Federal, State and Local Government agencies and Education and Healthcare markets. As the Master Government Aggregator for our vendor partners, we deliver solutions for Geospatial, Cybersecurity, MultiCloud, DevSecOps, Big Data, Artificial Intelligence, Open Source, Customer Experience and Engagement and more. Working with resellers, systems integrators and consultants, our sales and marketing teams provide industry leading IT products, services and training through hundreds of contract vehicles.
Read More
Emerging Technology
PR Newswire | January 09, 2024
InfoSec Global Federal, the leader in cryptographic vulnerability management, today announced the company has been added to the Department of Homeland Security (DHS) Continuous Diagnostics and Mitigation (CDM) Program's Approved Product List (APL). InfoSec Global Federal's AgileSec Analytics product helps U.S. federal agencies defend against the exploitation of cryptographic vulnerabilities. The inclusion of AgileSec Analytics to the APL strengthens national cybersecurity by protecting government agencies' most sensitive secrets and data from sophisticated attacks and breaches.
The Cybersecurity and Infrastructure Security Agency's (CISA) CDM program provides cybersecurity tools, integration services, and dashboards to participating federal agencies to help them improve the security posture of civilian government networks and systems by strengthening real-time risk monitoring and defense.
"The implicit trust of a privileged cryptographic ecosystem has resulted in the infamous SolarWinds hack and other high-profile attacks against federal agencies," said Philip George, Executive Technical Strategist of InfoSec Global Federal. "One aspect as to why these attacks were so successful can be directly attributed to poor visibility and analysis of privileged cryptographic assets, specifically certificates and tokens. Joining the APL underscores the value that InfoSec Global Federal's technology can deliver to reduce risk to critical federal infrastructure, a priority highlighted in OMB Memo 23-02, which requires federal civilian agencies to capture an inventory of all cryptographic assets in order to uncover vulnerabilities and to take immediate steps towards achieving post-quantum safety."
InfoSec Global Federal specializes in providing cryptographic discovery, remediation, and management solutions from the silicon firmware up through endpoint applications. Its secure software enables federal agencies to facilitate cryptographic vulnerability management, assure compliance, enrich software bill of materials with a cryptographic bill of materials (CBOM), and expedite post-quantum readiness in alignment with OMB Memo 23-02.
AgileSec Analytics offers essential tools for U.S. federal agencies aiming to enhance their cybersecurity and cryptographic posture. This solution is particularly crucial for conducting comprehensive cryptographic inventories, a vital process for government entities to deliver the following key advantages:
Enhanced Cryptographic Visibility: AgileSec Analytics empowers agencies with the ability to thoroughly scan their digital environments to identify and catalog all cryptographic assets. This includes keys, certificates, and cryptographic protocols deployed across various systems and networks.
Cryptographic Vulnerability Identification and Management: AgileSec Analytics assists agencies in pinpointing vulnerabilities within the cryptographic landscape. By analyzing the inventory, agencies can identify outdated or weak cryptographic practices, non-compliant assets, and potential areas susceptible to breaches.
Compliance with Federal Regulations: Aligning with mandates like OMB Memo 23-02, AgileSec Analytics aids agencies in ensuring that cryptographic assets adhere to federal cybersecurity standards. This compliance is critical for safeguarding sensitive government data and communications.
Preparation for Quantum Computing: As the threat landscape evolves with the advent of quantum computing, AgileSec Analytics positions agencies to be proactive. It helps in assessing the readiness of current cryptographic standards and facilitates a strategic shift towards quantum-resistant algorithms.
The inclusion of InfoSec Global AgileSec Analytics in the DHS CDM APL empowers federal agencies to conduct thorough cryptographic inventories, an integral part of maintaining a robust cybersecurity defense strategy.
About Infosec Global Federal
InfoSec Global Federal is a cryptographic security company that specializes in providing next-generation cryptographic discovery, agility, and management solutions from the firmware up through endpoint applications. Their secure software enables the management and agility of all cryptographic assets across a digital ecosystem, enabling government agencies to automate and orchestrate cryptography usage, shut down cryptographic vulnerabilities, facilitate compliance, and achieve post-quantum safety.
Read More
Government Business, Cybersecurity
PR Newswire | January 04, 2024
Synack has achieved the Moderate "Authorized" designation from the U.S. Federal Risk and Authorization Management Program (FedRAMP), demonstrating Synack's premier security testing platform meets the cloud compliance framework's rigorous requirements at the Moderate level.
The milestone approval means additional U.S. agencies can deploy Synack's best-in-class penetration testing and vulnerability management solutions – even in systems that process Controlled Unclassified Information and other official or sensitive data.
"This achievement is a gamechanger for our federal clients," said Dr. Mark Kuhr, Synack CTO and co-founder. "It also sends a clear message to all our customers: You can trust Synack to keep your data secure as we deliver pentesting of the highest caliber."
The Government Accountability Office has warned that "malicious actors are becoming more willing and capable of carrying out cyberattacks" on federal targets, with the potential to seriously harm national security. FedRAMP is a cornerstone of the U.S. government's efforts to realize that vision and combat threats as agencies continue to shift critical data to the cloud. Additionally, White House requirements such as Memorandum 22-09 require agencies to adopt a zero trust architecture strategy by September 2024.
Operating dedicated application security testing programs is a critical component of a zero trust strategy, and Synack proudly empowers agencies to conduct such services in a FedRAMP Moderate Authorized environment.
"This FedRAMP designation clears the way for Synack's premier security testing platform to protect more government systems," said Synack vice president for public sector Catherine Bowen. "We are doubling down on our goal to improve the security posture of agencies and companies handling mission-critical government applications, internally and externally."
To qualify as Moderate Authorized from FedRAMP, Synack successfully enforced 325 security controls and underwent extensive third-party vetting of its security infrastructure.
Achieving full authorization reflects Synack's ongoing commitment to making the world more secure by providing on-demand access to the Synack security testing platform and the 1,500-plus vetted security researchers who make up the global Synack Red Team.
The U.S. Department of Health and Human Services (HHS) sponsored Synack's successful bid for FedRAMP authorization. Today's announcement builds on Synack's FedRAMP Moderate "In Process" designation achieved in 2022, when Synack was first listed on the FedRAMP marketplace.
Synack has worked with HHS and dozens of other federal agencies to test internal assets and elevate their security postures. The company participated in the Defense Department's inaugural "Hack the Pentagon" program in 2016, helping find and fix high-impact vulnerabilities in a range of military networks. DoD would go on to host a follow-up initiative featuring Synack, aimed at normalizing a trusted, crowdsourced approach to security testing.
ABOUT SYNACK:
Synack's premier on-demand security testing platform harnesses a talented, vetted community of security researchers and smart technology to deliver continuous penetration testing and vulnerability management, with actionable results. We are committed to making the world more secure by closing the cybersecurity skills gap, giving organizations on-demand access to the most trusted security researchers in the world. Headquartered in Silicon Valley with regional teams around the world, Synack protects federal agencies and a growing list of Global 2000 customers, uncovering over 13,000 vulnerabilities for clients in 2023 alone.
Read More