GFOA Issues Alert on MCDC Initiative Settlement Terms for Issuers

Government Finance Officers Association (GFOA) | June 08, 2016

Issuers that self-reported under the SEC’s Municipalities Continuing Disclosure Cooperation (MCDC) initiative can expect to receive settlement offers containing standard provisions to which they must consent in the near future. The SEC is requesting an extraordinarily short turn-around for the settlement—5 to 10 days—but has indicated that it will extend the settlement offer upon request. This alert provides governments with an overview of the process and GFOA’s recommendations that state and local governments participating in the MCDC initiative become familiar with the standard terms that are expected to be in the offered settlements. GFOA strongly recommends that issuers seek legal advice prior to finalizing or signing the proposed SEC settlement agreement and make sure they fully understand the consequences of the proposed settlement.

Spotlight

Right in your own home, you have the power to save money and energy. Saving energy reduces our nation’s overall demand for resources needed to make energy, and increasing your energy efficiency.


Other News
GOVERNMENT BUSINESS

Aleut to Help Aggregate Actionable Intelligence for Government Agencies

ALEUT | September 07, 2022

Aleut Information Technology, LLC (Aleut) was awarded a contract by the U.S. Air Force to provide maintenance, development, and support service for its existing Open Architecture Distributed Common Ground System (OA/DCGS) and Forward Processing Exploitation and Dissemination (FPED) platform – the United States' primary visual data aggregator for military intelligence. "We want to help analysts provide better output to their agencies, We know how critical it is that information be processed and distributed efficiently and accurately. Aleut will continue to generate software updates at a quick cadence, adding capabilities that improve the functionality of the platform, and empower operators." -Aleut Federal's Vice President of Technology Services, Geoff Vaughan. FPED is a platform which takes a broad range of data including video, geospatial intelligence, photographs, and more, collected by aircraft in the field and exploits the data using subject matter experts located across the globe. Those experts then take the imagery and identify items of interest (e.g., weapons, vehicles, and troops). The annotated files are then disseminated to subsystems operated by external government agencies such as the Army, Navy and Marine Corps, who use it to generate intelligence reports on the status of the regions. Under the newly awarded contract, Aleut will continue to support various sites within the FPED network to perform software and hardware updates and training, working with operators to learn what features and functionality options they'd like to see in future updates. Aleut uses human centered design principles to research requirements and make User Experience (UX) improvement recommendations for government approval. This contract has a potential duration of three years – including one, one-year base period and two, one-year options. Aleut will partner with the incumbent, MetroStar. Aleut is proud to retain the original subcontractors and key members of the original project team, ensuring a seamless transition. ABOUT ALEUT: Formed in 2016, Aleut is a Small Business Administration certified 8(a) program participant, and Small Disadvantaged Business providing proven capabilities in the IT sector including, infrastructure and communications. Aleut Information Technology, LLC is a wholly owned subsidiary of Aleut Federal, LLC, a holding company for federal subsidiaries of The Aleut Corporation (TAC). TAC was one of 13 original Alaska Native Corporations established under the Alaska Native Claims Settlement Act, passed by the U.S. Congress in 1971.

Read More

EMERGING TECHNOLOGY

Growing Adoption of StateRAMP Across All State, Local Government & Education Sectors StateRAMP Momentum Continues

StateRAMP | September 21, 2022

StateRAMP announces its growing list of governments working with StateRAMP to validate their third-party suppliers' cyber security posture who use or offer cloud products to deliver services. The growing list of participating governments comes on the heels of the National Association of State Procurement Officials (NASPO) recent announcement naming StateRAMP a Strategic Partner. Working together, StateRAMP and NASPO will work to develop educational content and resources for state government. "With responsibilities for critical infrastructure, vital services, and mass storage of confidential and privacy data, government, at all levels, is a prime target for cybercrime, We are thrilled to see all levels of State and Local Government engaging in StateRAMP to improve our collective cyber posture for the citizens we serve." -J.R. Sloan, President of the StateRAMP Board and Chief Information Officer for the State of Arizona. Procuring technology tools and services is complicated work, and many organizations have sought to make that process easier for the public sector. By focusing on cybersecurity risk management, StateRAMP addresses a key pain point for state and local public agencies—and the vendors and suppliers that serve them. With a grounding in the reality of state and local government operations—and by building on widely adopted best practices—StateRAMP is exactly the sort of smart innovation that the public sector needs and deserves, said Doug Levin, National Director, K12 Security Information eXchange (K12 SIX). "We are excited to work with our strategic partners and members to continue toward our mission of promoting best practices in government for managing supplier cloud security, When there is a common problem, there is an opportunity for a shared solution. In cloud security, the shared solution is StateRAMP for all levels of government and the vendors who serve them." -Leah McGrath, Executive Director, StateRAMP. About StateRAMP: StateRAMP is a nonprofit organization that launched in early 2021 and brings state and local governments together with the suppliers who serve them to recognize best practices in cloud security and provides a standardized approach to cloud cybersecurity verification. StateRAMP provides state and local governments assurance that the suppliers they are working with meet the minimum cybersecurity standards through independent audits and ongoing continuous monitoring. StateRAMP is designed as a shared service for government and a streamlined service for suppliers who can verify their products one time and reuse that certification with each government agency they serve. StateRAMP maintains an Authorized Product List (APL) which lists products that have achieved a security status and those products going through the process. About K12 Security Information eXchange (K12 SIX): The K12 Security Information eXchange (K12 SIX) offers cybersecurity resilience to keep students learning and school districts operating.

Read More

CYBERSECURITY

Keeper Security Announces FedRAMP Authorization

Keeper Security | August 25, 2022

Keeper Security, the leading provider of zero-trust and zero-knowledge cybersecurity software protecting passwords, secrets, and connections, today announced that the company has obtained FedRAMP Authorization at the Moderate Impact Level for its Keeper Security Government Cloud (KSGC). The KSGC password management and security solution has successfully completed the rigorous FedRAMP accreditation process. This highly sought-after and difficult to attain designation sets KSGC apart from its competitors as the best in class zero-trust and zero-knowledge security solution for government agencies to protect their passwords, data, and secrets. KSGC is hosted in AWS GovCloud (US), designed to host sensitive data, regulated workloads, and address the most stringent U.S. government security and compliance requirements. To receive FedRAMP Authorization, organizations must implement controls from 17 different control families that originate from National Institute of Standards and Technology Special Publication 800-53. This alone can take organizations months or years, depending on the complexity of the system. Authorization can only be pursued by an organization through partnering with a federal agency or the Joint Authorization Board (JAB). Additionally, the system must be evaluated and assessed by an authorized independent third-party auditor prior to submitting for final review and authorization by the FedRAMP Program Management Office. "Keeper is proud to bring its password management and cybersecurity platform to FedRAMP Authorized status," said Darren Guccione, CEO and Co-Founder of Keeper Security. "This authorization demonstrates Keeper's longstanding -- and, some would say, fanatical -- commitment to the highest standards of internal security controls and encryption. Keeper is prepared to help federal agencies protect their digital assets against ransomware, data breaches and other password-related cyberattacks." "As a FedRAMP Authorized password management and security solution, KSGC will enable Carahsoft and our reseller partners to help federal agencies better secure their sensitive information and protect against password related breaches, Keeper's zero-knowledge, zero-trust architecture solves compliance and regulatory enforcement requirements, providing a trusted, reliable solution that meets government needs." -Steve Jacyna, who leads the Keeper Security team at Carahsoft. Today's attackers are advanced at using any breached username and password combination to run through analytics and bots to find any use or similar use combination. By leveraging password managers, a constant health check can be maintained for password diversification and security, said Jean-Paul Bergeaux, Federal Chief Technology Officer of GuidePoint Security. Enterprises cannot assume users are doing this and KSGC provides a way for government security teams to maintain password security while also significantly improving user experience throughout their work life. The FedRAMP Authorized KSGC follows a White House Executive Order mandating zero-trust architecture and strong encryption, along with a draft memorandum by the Office of Management and Budget (OMB) and the Cybersecurity and Infrastructure Security Agency (CISA) mandating all federal agencies adopt a zero-trust security architecture by 2024. The memorandum specifically calls out password security requirements that KSGC facilitates, including strong password policies, the removal of a deprecated requirement to require special characters and regular password rotation, and the ability to compare user passwords against weak and breached data. Keeper provides government agencies with a human-centric cybersecurity solution that promotes adoption of password best practices, like the use of MFA, by employees and contractors. Keeper also promotes secure collaboration with encrypted record sharing that allows system administrators to regulate privileged access to files, as well as masking credentials. Keeper's zero-knowledge system architecture provides the highest levels of security and privacy. Encryption and decryption of data always occurs locally on the user's device, and only the encrypted ciphertext is stored in KSGC. About Keeper Security: Keeper Security, Inc. ("Keeper") is transforming the way organizations and individuals protect their credentials, secrets, connections and sensitive digital assets to significantly reduce the risks of identity security-related cyber attacks while gaining visibility and control. Keeper is the leading provider of zero-trust and zero-knowledge security cloud services trusted by millions of people and thousands of organizations for password and secrets management, privileged access, secure remote infrastructure access and encrypted messaging. Keeper's products are the highest-rated in the industry across G2, Trustpilot, PCMag and U.S. News & World Report. For the last several years, Keeper has received several InfoSec Awards from Cyber Defense Magazine for its cyber security enterprise software. Keeper is SOC 2 and ISO 27001 certified, and FIPS 140-2 validated, and Keeper is the only FedRAMP Authorized enterprise password management solution. Keeper is backed by Insight Partners, a leading venture capital and private equity firm with $90b AUM. About Carahsoft: Carahsoft Technology Corp. is The Trusted Government IT Solutions Provider®, supporting Federal, State and Local Government and Education and Healthcare. As the Master Government Aggregator® for its vendor and reseller partners, Carahsoft delivers solutions for Cybersecurity, MultiCloud, DevSecOps, Big Data, Artificial Intelligence, Open Source, Customer Experience and Engagement, and more. About GuidePoint Security: GuidePoint Security provides cybersecurity solutions and services that help organizations make better decisions. GuidePoint Security's holistic approach enables organizations to identify threats, optimize resources, and integrate solutions that mitigate risk.

Read More

EMERGING TECHNOLOGY

Hayden AI Granted Patent for Traffic Rule Management Technology

Hayden AI Technologies | July 01, 2022

Hayden AI Technologies, Inc., a leading provider of smart traffic enforcement solutions powered by artificial intelligence, has been awarded a patent for technology that automatically manages and analyzes traffic rules for violation enforcement and enables data-informed operational improvements for government agencies. The patent was awarded on May 3, 2022 and is labeled U.S. Patent number 11,322,017 B1. The new patented technology facilitates the management of complex traffic rules using a traffic enforcement layer situated on top of a semantic map layer. The map layer, which consists of street elements such as intersections and stop signs, is continuously updated with data captured by Hayden AI edge devices already installed on municipal vehicles for automated enforcement. The enforcement layer consists of traffic rules that can be adjusted directly by the user or automatically via a traffic insight layer, which is generated based on traffic violations and traffic conditions. By analyzing the impact of traffic rules, the insight layer also provides suggestions for adjustments. We devised this method because defining and managing traffic rules digitally hasn't been done successfully before. Our pilot programs consistently show that using AI to manage traffic rules is significantly more efficient and flexible than the traditional logic-based approach. We've also built in mechanisms that enable municipalities to gauge the effectiveness of particular traffic rules or lane restrictions in reducing traffic congestion as well as keeping buses on schedule." Bo Shen, CTO and Co-Founder of Hayden AI In addition to using artificial intelligence to automatically learn and manage traffic rules, the new system allows municipalities to directly update these rules via an interactive map editor. Government entities can also import raw traffic rule data from a transportation department database and generate a heat map of traffic violations detected by edge devices to update the insight layer. By providing several methods to add and modify enforcement rules, the system helps government entities to update ineffective restrictions and ensure that enforcement results in a reduction in traffic congestion and crashes and an improvement in travel times and safety. About Hayden AI Hayden AI is pioneering smart traffic enforcement with its mobile platform to increase the safety, efficiency, and sustainability of municipal fleet vehicles. Our platform allows government agencies to enforce traffic laws, while harnessing AIoT data to gain actionable insights that help enhance the quality of life of their communities. Developed by a team of experts in machine learning, data science, transportation, and government technology, our flagship product, Automated Bus Lane Enforcement, enforces dedicated bus lanes, delivery zones, and intersections to reduce traffic congestion, improve bus speeds, and increase transit ridership.

Read More

Spotlight

Right in your own home, you have the power to save money and energy. Saving energy reduces our nation’s overall demand for resources needed to make energy, and increasing your energy efficiency.

Resources