EMERGING TECHNOLOGY, CYBERSECURITY
Zetron | March 15, 2023
On March 14, 2023, Zetron, one of the leading communications technology and service providers, announced it has received a contract from the North Central Regional Planning Commission (NCRPC) of Kansas (USA). The contract offers cyber resilience roadmaps and assessments for the Public Safety Answering Points (PSAPs) of 34 counties throughout the states. As the fiscal agent for six of the seven Homeland Security regions in Kansas, the Homeland Security/Emergency Operations unit of the Kansas Highway Patrol applies for and administers Homeland Security Grant Program (HSGP) funding to subrecipients such as the NCRPC.
State and local governments, including fire departments, police, and other public safety agencies, are increasingly susceptible to cyberattacks. As per the Verizon 2022 Data Breach Investigations Report (DBIR), the public sector had the second-most cybersecurity incidents and the fourth-most data breaches among major industries in 2018. In addition, a 2021 Fastly report found that of all cybersecurity alerts, 45 percent are false positives that can be frequently difficult to distinguish from genuine threats and malicious behavior. This results in getting valuable time wasted during an emergency.
Zetron, with SecuLore Solutions, a cybersecurity partner and local services partners, will finish cybersecurity assessments and roadmaps of selected thirty-four counties across Kansas, with its population from 600,000 to less than 1300 people. Each counties' assessment will identify threats and provide prioritized, actionable recommendations for remediating vulnerabilities and enhancing the county's cybersecurity risk posture. Following the contract terms, cybersecurity assessments and road maps for Kansas counties selected by NCRPC Regional Project Managers and the Planning Team will be completed in multiple phases through March 2024.
About Zetron
Zetron is one of the leaders in mission-critical communications technology worldwide. The company offers integrated solutions with exceptional reliability and support. It was founded in 1980 with decades of experience serving the public and private sectors and a sterling reputation for superior quality and dependability. Based in Redmond, Washington, it has customers across all seven continents and in a variety of industries such as transportation, public safety, utilities, the federal government, natural resources and more. In addition, it delivers purpose-built solutions to be always available wherever mission-critical communications must be uninterrupted.
Read More
EMERGING TECHNOLOGY, CYBERSECURITY
Businesswire | May 19, 2023
Juvare®, the leader in situational awareness and critical incident preparedness and response technology, has been granted a Federal Risk and Authorization Management Program (FedRAMP®) authorization by the United States Government to operate at the High impact level for the Juvare Federal Cloud (JFC).
Achieving FedRAMP High authorization is a recognition of the trusted and timely solutions Juvare provides for government, including JFC, which enables a compliant and secure environment for public sector organizations to deploy Juvare solutions, including WebEOC® and Juvare Exchange®. The FedRAMP High authorization builds upon Juvare’s aggressive security posture and follows Juvare’s ISO accreditations under the ISO 27001, ISO 27017, ISO 27018, and ISO 27701 programs, and its SSAE 18 SOC 2 Type 2 certification.
“This is an enormous achievement that recognizes Juvare’s ability to provide modern and highly secure solutions the federal government is looking for,” said Robert Watson, Chief Executive Officer at Juvare. “With cyber security, emergency preparedness, health crises, and more dominating the federal priority list, this authorization gives government better access to the tools we provide to protect the communities they serve. It’s a recognition that’s been earned through our relentless commitment to data security and innovations that respond to real-world threats and risks.”
FedRAMP is a U.S. government-wide program that provides a standardized approach to security assessment, authorization, and continuous monitoring for cloud products and services. Established by the Office of Management and Budget (OMB), the program provides a cost-effective, risk-based approach for adopting and using cloud services by federal departments and agencies.
“Technology is a force multiplier for delivery of services to communities across the nation that our clients serve and protect,” says Bryan Kaplan, Chief Information and Technology Officer at Juvare. “This authorization demonstrates our commitment to the federal-civilian and military ecosystem and will enable faster processing of Authority to Operate (ATO) packages through reciprocity. It enables agencies to focus on protecting their communities and our nation, knowing that Juvare is managing security and availability.”
Juvare partnered with A-LIGN and SMX to achieve FedRAMP accreditation. The Veterans Health Administration (VHA) served as Juvare’s sponsor through the authorization process.
“FedRAMP authorization is a statement about an organization’s commitment to protecting federal data and metadata against one of the most rigorous standards for data security,” said Tony Bai, Government Practice Lead at A-LIGN. “As a trusted 3PAO firm, A-LIGN independently evaluates client data processes and procedures, governance on internal controls, and security posture. Juvare’s FedRAMP Authorization validates its commitment to data security and protection, as well as compliance with critical standards to mitigate cybersecurity threats.”
Juvare’s solutions including WebEOC, Crisis Track®, and EMResource® have been used to prepare for, respond to, and recover from major emergencies and adverse incidents since their inception. As public sector organizations modernize and demand persistent situational awareness, Juvare solutions have become embedded in daily workstreams by digitizing workflows, providing situational awareness, enabling multi-channel notifications, and connecting disparate data sources into a single pane of glass.
ABOUT JUVARE
Juvare is a worldwide leader in emergency preparedness and critical incident management and response technology connecting over 80% of state public health agencies, 3,500+ hospitals, 50+ federal agencies, and 500+ emergency management operations across the U.S., as well as a rapidly expanding international presence. Juvare solutions empower government agencies, corporations, healthcare facilities, academic institutions, and volunteer organizations to leverage real-time data to manage incidents faster and more efficiently, protecting people, property, and brands.
ABOUT A-LIGN
A-LIGN is the only end-to-end cybersecurity compliance solutions provider with readiness to report compliance automation software paired with professional audit services, trusted by more than 4,300 global organizations to help mitigate cybersecurity risks. A-LIGN uniquely delivers a single-provider holistic approach for a variety of compliance security frameworks such as SOC, ISO, HITRUST, FedRAMP, CMMC, PCI DSS and more. Working with growing businesses to global enterprises, A-LIGN’s experts and its compliance automation platform, A-SCEND, are transforming the compliance experience. For more information, visit www.A-LIGN.com.
Read More
GOVERNMENT FINANCE
PR Newswire | May 18, 2023
OneTrust, the market-defining leader for trust intelligence, introduces OneTrust Artificial Intelligence (AI) Governance, a comprehensive solution designed to help organizations inventory, assess, and monitor the wide range of risks associated with AI. As organizations use AI and machine learning (ML) to process large amounts of data and drive innovation, AI Governance provides visibility and control over data used and risks generated by AI models.
According to Gartner, "Success and scaling of AI projects require leaders to address strategies and methods related to fairness, transparency, explainability, reliability, privacy, and security."1 As the use of AI and machine learning becomes more widespread, it is essential for organizations to address the privacy, ethical, and societal risks associated with these technologies. With AI Governance, organizations can embed data ethics, privacy, and security practices by default into the use of AI across their business.
"Responsible AI is not an option, but a necessity in today's business landscape," said Blake Brannon, Chief Product and Strategy Officer at OneTrust. "AI Governance provides a comprehensive solution for managing the unique risks associated with AI, including privacy, ethical, compliance, and operational risks. Using our product, organizations can automate record keeping and risk management, ensuring transparency, fairness, and accountability in their AI systems. By implementing responsible AI practices, companies can build trust with customers, regulators, and society at large, and position their business for success in the AI-driven future."
With AI Governance, compliance teams and data scientists can better understand data use and classification, evaluate the risks, and demonstrate compliance with emerging global requirements to ensure AI is used ethically and responsibly:
Inventory: Organizations can centrally view and manage AI projects, models, and data sets both internally developed and sourced from third parties. AI Governance establishes relationships across data sets and AI models to trace the path of data from its origin.
Assess risk: Users can assess AI projects against global laws and frameworks, including the NIST AI Risk Management Framework (RMF), OECD AI Principles, and more. AI Governance, along with OneTrust Data Discovery & Governance, connects to structured and unstructured sources of data to automatically discover and classify sensitive and personal data that may drive algorithmic bias or privacy risk. Regulatory intelligence helps automate compliance workflows and risk management, and automatically generate required control mitigations and compliance documentation such as conformity assessments.
Monitor: AI Governance integrates with existing model registries and MLOps tooling to detect AI model use and changes, and sync with a centralized inventory. Teams can continually evaluate models and training data for drift, bias, fairness, accuracy, and quality with in-app alerts.
Only OneTrust provides the powerful combination of privacy and risk management solutions, built-in regulatory guidance, data discovery and classification, and AI risk management framework templates to manage the unique and broad-reaching risks posed by AI systems. The solution leverages OneTrust's deep experience in data privacy and governance, and robust tools for managing risk and record keeping for audit, compliance, and proactive trust management.
OneTrust AI Governance will be available to select, qualifying customers through the AI Governance Early Access Program (EAP). This program offers an opportunity to get an early look at the solution and provide feedback to shape its development.
About OneTrust
OneTrust is the trust intelligence cloud platform organizations use to transform trust from an abstract concept into a measurable competitive advantage. Organizations globally use OneTrust to enable the responsible use of data while protecting the privacy rights of individuals, implement and report on their cyber security program, make their social impact goals a reality, and create a speak up culture of trust. Over 14,000 customers use OneTrust's technology, including half of the Global 2,000. OneTrust currently ranks #24 on the Forbes Cloud 100 list of top private cloud companies in the world and employs over 2,000 people in regions across North America, South America, Asia, Europe, and Australia.
Read More