CYBERSECURITY

Keeper Security Announces FedRAMP Authorization

Keeper Security | August 25, 2022 | Read time : 04:28 min

Keeper Security News
Keeper Security, the leading provider of zero-trust and zero-knowledge cybersecurity software protecting passwords, secrets, and connections, today announced that the company has obtained FedRAMP Authorization at the Moderate Impact Level for its Keeper Security Government Cloud (KSGC).

The KSGC password management and security solution has successfully completed the rigorous FedRAMP accreditation process. This highly sought-after and difficult to attain designation sets KSGC apart from its competitors as the best in class zero-trust and zero-knowledge security solution for government agencies to protect their passwords, data, and secrets. KSGC is hosted in AWS GovCloud (US), designed to host sensitive data, regulated workloads, and address the most stringent U.S. government security and compliance requirements.

To receive FedRAMP Authorization, organizations must implement controls from 17 different control families that originate from National Institute of Standards and Technology Special Publication 800-53. This alone can take organizations months or years, depending on the complexity of the system. Authorization can only be pursued by an organization through partnering with a federal agency or the Joint Authorization Board (JAB). Additionally, the system must be evaluated and assessed by an authorized independent third-party auditor prior to submitting for final review and authorization by the FedRAMP Program Management Office.

"Keeper is proud to bring its password management and cybersecurity platform to FedRAMP Authorized status," said Darren Guccione, CEO and Co-Founder of Keeper Security. "This authorization demonstrates Keeper's longstanding -- and, some would say, fanatical -- commitment to the highest standards of internal security controls and encryption. Keeper is prepared to help federal agencies protect their digital assets against ransomware, data breaches and other password-related cyberattacks."

"As a FedRAMP Authorized password management and security solution, KSGC will enable Carahsoft and our reseller partners to help federal agencies better secure their sensitive information and protect against password related breaches, Keeper's zero-knowledge, zero-trust architecture solves compliance and regulatory enforcement requirements, providing a trusted, reliable solution that meets government needs."

-Steve Jacyna, who leads the Keeper Security team at Carahsoft.

Today's attackers are advanced at using any breached username and password combination to run through analytics and bots to find any use or similar use combination. By leveraging password managers, a constant health check can be maintained for password diversification and security, said Jean-Paul Bergeaux, Federal Chief Technology Officer of GuidePoint Security. Enterprises cannot assume users are doing this and KSGC provides a way for government security teams to maintain password security while also significantly improving user experience throughout their work life.

The FedRAMP Authorized KSGC follows a White House Executive Order mandating zero-trust architecture and strong encryption, along with a draft memorandum by the Office of Management and Budget (OMB) and the Cybersecurity and Infrastructure Security Agency (CISA) mandating all federal agencies adopt a zero-trust security architecture by 2024. The memorandum specifically calls out password security requirements that KSGC facilitates, including strong password policies, the removal of a deprecated requirement to require special characters and regular password rotation, and the ability to compare user passwords against weak and breached data.

Keeper provides government agencies with a human-centric cybersecurity solution that promotes adoption of password best practices, like the use of MFA, by employees and contractors. Keeper also promotes secure collaboration with encrypted record sharing that allows system administrators to regulate privileged access to files, as well as masking credentials. Keeper's zero-knowledge system architecture provides the highest levels of security and privacy. Encryption and decryption of data always occurs locally on the user's device, and only the encrypted ciphertext is stored in KSGC.

About Keeper Security:
Keeper Security, Inc. ("Keeper") is transforming the way organizations and individuals protect their credentials, secrets, connections and sensitive digital assets to significantly reduce the risks of identity security-related cyber attacks while gaining visibility and control. Keeper is the leading provider of zero-trust and zero-knowledge security cloud services trusted by millions of people and thousands of organizations for password and secrets management, privileged access, secure remote infrastructure access and encrypted messaging.

Keeper's products are the highest-rated in the industry across G2, Trustpilot, PCMag and U.S. News & World Report. For the last several years, Keeper has received several InfoSec Awards from Cyber Defense Magazine for its cyber security enterprise software. Keeper is SOC 2 and ISO 27001 certified, and FIPS 140-2 validated, and Keeper is the only FedRAMP Authorized enterprise password management solution. Keeper is backed by Insight Partners, a leading venture capital and private equity firm with $90b AUM.

About Carahsoft:
Carahsoft Technology Corp. is The Trusted Government IT Solutions Provider®, supporting Federal, State and Local Government and Education and Healthcare. As the Master Government Aggregator® for its vendor and reseller partners, Carahsoft delivers solutions for Cybersecurity, MultiCloud, DevSecOps, Big Data, Artificial Intelligence, Open Source, Customer Experience and Engagement, and more.

About GuidePoint Security:
GuidePoint Security provides cybersecurity solutions and services that help organizations make better decisions. GuidePoint Security's holistic approach enables organizations to identify threats, optimize resources, and integrate solutions that mitigate risk.

Spotlight

On June 22, 2010, the U.S. Intellectual Property Enforcement Coordinator (IPEC) issued the Administration’s first Joint Strategic Plan on Intellectual Property Enforcement (Strategy).


Other News
EMERGING TECHNOLOGY, GOVERNMENT FINANCE

DARPA Launches Crypto Project with Inca Digital

Inca Digital | September 26, 2022

The Defense Advanced Research Projects Agency (DARPA) has awarded Inca Digital's government contracting division, Inca Digital Federal, a Phase II Small Business Innovation Research (SBIR) contract to research advanced methods for analyzing activity related to financial applications of distributed ledgers in a project called: "Mapping the Impact of Digital Financial Assets". The aim of the SBIR is to understand and visualize how digital assets implicate national security. "Digital asset markets hold amazing promise, but also contend with money laundering, market manipulation, and state actors that may pose risks to U.S. national security, Given the increasing prevalence of digital assets, the Department of Defense and other federal agencies need to have better tools to understand how digital assets operate and how to leverage their jurisdictional authority over digital asset markets globally." -Adam Zarazinski, CEO of Inca Digital. As a result of this SBIR, Inca Digital Federal will develop a first-of-its-kind cryptocurrency ecosystem mapping tool for analyzing cross-market crypto-financial data and risk. The data analytics from Inca Digital will allow both the United States government and commercial companies to: Perform cross-market, crypto-financial mapping and analysis Understand relationships between digital asset firms and non-digital asset entities Identify how cryptocurrency may affect traditional financial systems and vice-versa Provide insight into the use of blockchain-based technologies linked to money laundering, terrorist financing, and sanctions evasions across systems (e.g., fiat-to-exchange, exchange-to-blockchain, and cross-blockchain transactions) Better understand money flows in and out of blockchain systems Identify where recipients of cryptocurrency can exchange it for local fiat currency, or goods and services, globally Understand how cryptocurrencies are used in different U.S. government/Department of Defense areas of responsibility This research is being developed by funding from the Defense Advanced Research Projects Agency (DARPA). The views, opinions and/or findings expressed are those of the author and should not be interpreted as representing the official views or policies of the Department of Defense or the U.S. Government. About Inca Digital: Inca Digital and its government contracting entity, Inca Digital Federal, analyze data across crypto markets, blockchains, and news and social media to deliver comprehensive intelligence to the financial institutions, technology firms and government entities that are shaping the digital asset space.

Read More

EMERGING TECHNOLOGY

Draganfly Selected as Preferred Partner to DEF-C Ukraine Government Military Service Provider

Draganfly | November 18, 2022

Draganfly Inc. (NASDAQ: DPRO) (CSE: DPRO) (FSE: 3U8) (“Draganfly” or the “Company”), an award-winning, industry-leading drone solutions and systems developer, is pleased to announce DEF-C, a Ukrainian company involved in the civil and defense sectors, has selected Draganfly as an exclusive provider of drones and related services. DEF-C is a Ukrainian company of the Intecracy Group consortium, which has been involved in projects in the creation and use of unmanned aerial vehicles and solutions in the civil and defense sectors for the past decade, providing a broad range of products and services. Draganfly will provide comprehensive equipment and solutions for emergency response, security, defense, and infrastructure, in addition to mapping, support, and public services. Draganfly’s platforms can adapt to air and ground situations providing a range of solutions that solve integral issues. “DEF-C is a trusted provider to multiple Ukraine agencies. The integration of Draganfly’s solutions into our multiple civil and military projects has been well received, and we look forward to expanding this strategic partnership” -Yuri Syvytsky, Lead Director of DEF-C. The partnership between Draganfly and DEF-C will enable us to continue to provide equipment and solutions to the people of Ukraine, said Cameron Chell, President, and CEO of Draganfly. The selection of Draganfly by DEF-C is a testament to the strength of our technology and our team's ability to provide turnkey solutions that meet the specific needs of our customer base. About Draganfly: Draganfly Inc. (NASDAQ: DPRO; CSE: DPRO; FSE: 3U8) is the creator of quality, cutting-edge drone solutions, software, and AI systems that revolutionize the way organizations can do business and service their stakeholders. Recognized as being at the forefront of technology for over 20 years, Draganfly is an award-winning industry leader serving the public safety, public health, mining, agriculture, industrial inspections, security, mapping, and surveying markets. Draganfly is a company driven by passion, ingenuity, and the need to provide efficient solutions and first-class services to its customers around the world with the goal of saving time, money, and lives.

Read More

EMERGING TECHNOLOGY

U.S. Public Sector Migrates to Workday in Cloud Push

ISG | October 17, 2022

Migration to the cloud by the U.S. public sector, gaining momentum in the wake of the COVID-19 pandemic, is helping to make Workday a core component of human capital management (HCM) strategies at a growing number of organizations, according to a new research report published today by Information Services Group (ISG) (Nasdaq: III), a leading global technology research and advisory firm. The 2022 ISG Provider Lens™ Workday Ecosystem report for the U.S. Public Sector finds that the pandemic made state and local governments work harder to attract and retain employees even as economic disruptions often reduced revenue and budgets. These challenges have become a central reason to modernize IT systems that were already straining to meet growing demands for digitized constituent services. “Many public agencies in the U.S. are going through both technology and staffing transitions at the same time, Workday offers a forwarding-looking solution to support that transition, especially with help from experienced service providers.” -Nathan Frey, ISG partner, U.S. Public Sector. After relying for decades on outdated IT systems, which in many cases were developed in-house and required the knowledge of administrators now reaching retirement age, many governments and institutions are jumping ahead to cloud-based solutions, ISG says. In workforce management, this often means adopting Workday, which is gaining prominence in the public sector and higher education. Workday offers a unified platform, for HCM and other functions, that can be relatively cost-efficient and easy to use if implemented effectively, the report says. Public sector organizations use different approaches to deploying and managing IT, with some relying more on internal resources and some on third parties, depending on budget practices and other factors. But with qualified Workday experts in short supply, many are engaging service providers for the skills required to implement the platform and get the most value from their investment. “A successful Workday project requires both platform expertise and a realistic strategy designed for measurable results, Qualified providers will understand public sector objectives for service delivery and employee satisfaction and enable a Workday deployment that meets them.” -Jan Erik Aase, partner and global leader, ISG Provider Lens Research. About ISG Provider Lens™ Research: The ISG Provider Lens™ Quadrant research series is the only service provider evaluation of its kind to combine empirical, data-driven research and market analysis with the real-world experience and observations of ISG's global advisory team. Enterprises will find a wealth of detailed data and market analysis to help guide their selection of appropriate sourcing partners, while ISG advisors use the reports to validate their own market knowledge and make recommendations to ISG's enterprise clients. The research currently covers providers offering their services globally, across Europe, as well as in the U.S., Canada, Brazil, the U.K., France, Benelux, Germany, Switzerland, the Nordics, Australia and Singapore/Malaysia, with additional markets to be added in the future. About ISG: ISG (Information Services Group) (Nasdaq: III) is a leading global technology research and advisory firm. A trusted business partner to more than 800 clients, including more than 75 of the world’s top 100 enterprises, ISG is committed to helping corporations, public sector organizations, and service and technology providers achieve operational excellence and faster growth. The firm specializes in digital transformation services, including automation, cloud and data analytics; sourcing advisory; managed governance and risk services; network carrier services; strategy and operations design; change management; market intelligence and technology research and analysis. Founded in 2006, and based in Stamford, Conn., ISG employs more than 1,300 digital-ready professionals operating in more than 20 countries—a global team known for its innovative thinking, market influence, deep industry and technology expertise, and world-class research and analytical capabilities based on the industry’s most comprehensive marketplace data.

Read More

EMERGING TECHNOLOGY

Mobile Mentor Awarded GSA Contract by the US Government

Mobile Mentor | November 25, 2022

Mobile Mentor, a rapidly growing technology services company and Microsoft partner, is pleased to announce their contract award with the GSA. GSA (General Services Administration) is the procurement and contracting vehicle for the United States Federal Government. The award allows the Mobile Mentor team to provide federal, state and local government agencies with services to modernize IT operations and improve cyber security using the latest in Microsoft security technologies. Mobile Mentor was officially granted vendor status to the GSA as a small business in late October. In 2022, the federal contracting goal for small business reached 27.2 percent of total federal contracting funds. “Partnering with the GSA to provide services to the federal government is a huge privilege, It opens the door for our team of industry-leading experts to make a real impact and allows us to do our part in ensuring the security of crucial federal agencies. By embracing modern security practices like Zero Trust and Passwordless Authentication, we help government agencies to achieve the optimum balance between security and user experience, We believe security and user experience are equally important in today’s world where security threats are everywhere, and employees are increasingly working remotely, relying on their technology every minute of the day. This intersection of security and employee experience defines the workplace of the future, and we are proud to be leading the way with our government clients and strategic partners such as Microsoft.” -Denis O’Shea, CEO and Founder of Mobile Mentor. Since the founding of the company in 2004, Mobile Mentor has partnered with a variety of government agencies internationally to modernize IT operations and improve security for the mobile workforce. In 2021, Mobile Mentor won Microsoft’s international partner of the year award for modern endpoint management, positioning the company as a global leader in securing the modern hybrid workforce. About Mobile Mentor: Mobile Mentor empowers people to achieve more by unlocking the full potential of their technology. With operations in the USA, Australia and New Zealand, Mobile Mentor is the remote partner for the remote workforce. Founded in 2004, Mobile Mentor has enabled millions of people to increase security and productivity with their laptops, tablets, smartphones, and apps.

Read More

Spotlight

On June 22, 2010, the U.S. Intellectual Property Enforcement Coordinator (IPEC) issued the Administration’s first Joint Strategic Plan on Intellectual Property Enforcement (Strategy).

Resources