StateRAMP | September 21, 2022
StateRAMP announces its growing list of governments working with StateRAMP to validate their third-party suppliers' cyber security posture who use or offer cloud products to deliver services.
The growing list of participating governments comes on the heels of the National Association of State Procurement Officials (NASPO) recent announcement naming StateRAMP a Strategic Partner. Working together, StateRAMP and NASPO will work to develop educational content and resources for state government.
"With responsibilities for critical infrastructure, vital services, and mass storage of confidential and privacy data, government, at all levels, is a prime target for cybercrime, We are thrilled to see all levels of State and Local Government engaging in StateRAMP to improve our collective cyber posture for the citizens we serve."
-J.R. Sloan, President of the StateRAMP Board and Chief Information Officer for the State of Arizona.
Procuring technology tools and services is complicated work, and many organizations have sought to make that process easier for the public sector. By focusing on cybersecurity risk management, StateRAMP addresses a key pain point for state and local public agencies—and the vendors and suppliers that serve them. With a grounding in the reality of state and local government operations—and by building on widely adopted best practices—StateRAMP is exactly the sort of smart innovation that the public sector needs and deserves, said Doug Levin, National Director, K12 Security Information eXchange (K12 SIX).
"We are excited to work with our strategic partners and members to continue toward our mission of promoting best practices in government for managing supplier cloud security, When there is a common problem, there is an opportunity for a shared solution. In cloud security, the shared solution is StateRAMP for all levels of government and the vendors who serve them."
-Leah McGrath, Executive Director, StateRAMP.
StateRAMP is a nonprofit organization that launched in early 2021 and brings state and local governments together with the suppliers who serve them to recognize best practices in cloud security and provides a standardized approach to cloud cybersecurity verification.
StateRAMP provides state and local governments assurance that the suppliers they are working with meet the minimum cybersecurity standards through independent audits and ongoing continuous monitoring. StateRAMP is designed as a shared service for government and a streamlined service for suppliers who can verify their products one time and reuse that certification with each government agency they serve. StateRAMP maintains an Authorized Product List (APL) which lists products that have achieved a security status and those products going through the process.
About K12 Security Information eXchange (K12 SIX):
The K12 Security Information eXchange (K12 SIX) offers cybersecurity resilience to keep students learning and school districts operating.
ISG | September 12, 2022
Overlapping crises and technology trends have heightened cybersecurity concerns in Germany, leading enterprises to increase their investments in security products and services, according to a new research report published today by Information Services Group (ISG) (Nasdaq: III), a leading global technology research and advisory firm.
The 2022 ISG Provider Lens™ Cybersecurity — Solutions and Services report for Germany finds that cyber threats caused by the war in Ukraine, along with disruptions from the COVID-19 pandemic and increasing digitization of enterprises, have expanded attack surfaces and resulted in more cybersecurity breaches in Germany. As companies bring more data, communications and processes into the digital realm, cybersecurity is becoming a higher priority.
“Holistic enterprise security is more than just a current trend, it’s vital to the successful operation of a business, German senior executives understand that cyberattacks can seriously threaten a company’s reputation and finances, so they are paying even greater attention to secure collaboration with third parties, secure core business processes and secure connected and digital products.”
-Roger Albrecht, co-lead, ISG Cybersecurity.
German companies and government agencies are defending themselves against increasingly sophisticated cyberattacks amid a shortage of IT professionals, especially in cybersecurity, the report says. As risks increase in Germany for both large and midsize enterprises, there is a growing need for guidance.
Many organizations are engaging with strategic, technical and managed security service providers for help implementing and constantly honing their defenses. Also, because many attackers breach organizations through social engineering methods such as phishing, companies also turn to providers for consulting and employee training to prevent human errors. Because of strict data protection regulations, most German enterprises rely on providers with security operations centers in Germany.
Remote and hybrid work, which emerged suddenly during the pandemic and is expected to become permanent, has made IT systems more vulnerable to attack as employees connect to enterprises from different locations and through their own devices. To manage this risk, German enterprises are investing in advanced identity and access management (IAM) capabilities, especially cloud-managed systems that can function across multiple cloud installations.
“German companies need to manage more users, devices and digital services than ever, In many cases, service providers are taking on these roles.”
-Jan Erik Aase, partner and global leader, ISG Provider Lens Research.
The report explores a wide range of cybersecurity trends in Germany, including increasing use of zero-trust approaches, the growth of the midsize market and the evolution of endpoint protection from traditional antivirus solutions to AI-based behavioral analysis.
The 2022 ISG Provider Lens™ Cybersecurity — Solutions and Services report for Germany evaluates the capabilities of 97 providers across six quadrants: Identity and Access Management (IAM), Data Leakage/Loss Prevention (DLP) and Data Security, Advanced Endpoint Threat Detection and Response (Advanced ETPDR), Technical Security Services (TSS), Strategic Security Services (SSS) and Managed Security Services.
The report names IBM as a Leader in five quadrants and Atos as a Leader in four quadrants. It names Accenture, Axians, Capgemini, Deutsche Telekom and Microsoft as Leaders in three quadrants each. Bechtle, Broadcom, CANCOM, Computacenter, Controlware and Trend Micro are named as Leaders in two quadrants each. CrowdStrike, Deloitte, DriveLock, DXC Technology, Forcepoint, GBS, HCL, HelpSystems, Infosys, KPMG, Matrix42, Okta, Orange Cyberdefense, Ping Identity, PwC, RSA, SentinelOne, Sophos, TCS, Trellix, VMware Carbon Black and Wipro are named as Leaders in one quadrant each.
About ISG Provider Lens™ Research:
The ISG Provider Lens™ Quadrant research series is the only service provider evaluation of its kind to combine empirical, data-driven research and market analysis with the real-world experience and observations of ISG's global advisory team. Enterprises will find a wealth of detailed data and market analysis to help guide their selection of appropriate sourcing partners, while ISG advisors use the reports to validate their own market knowledge and make recommendations to ISG's enterprise clients. The research currently covers providers offering their services globally, across Europe, as well as in the U.S., Canada, Brazil, the U.K., France, Benelux, Germany, Switzerland, the Nordics, Australia and Singapore/Malaysia, with additional markets to be added in the future.
ISG (Information Services Group) (Nasdaq: III) is a leading global technology research and advisory firm. A trusted business partner to more than 800 clients, including more than 75 of the world’s top 100 enterprises, ISG is committed to helping corporations, public sector organizations, and service and technology providers achieve operational excellence and faster growth. The firm specializes in digital transformation services, including automation, cloud and data analytics; sourcing advisory; managed governance and risk services; network carrier services; strategy and operations design; change management; market intelligence and technology research and analysis. Founded in 2006, and based in Stamford, Conn., ISG employs more than 1,300 digital-ready professionals operating in more than 20 countries—a global team known for its innovative thinking, market influence, deep industry and technology expertise, and world-class research and analytical capabilities based on the industry’s most comprehensive marketplace data.
ALEUT | September 07, 2022
Aleut Information Technology, LLC (Aleut) was awarded a contract by the U.S. Air Force to provide maintenance, development, and support service for its existing Open Architecture Distributed Common Ground System (OA/DCGS) and Forward Processing Exploitation and Dissemination (FPED) platform – the United States' primary visual data aggregator for military intelligence.
"We want to help analysts provide better output to their agencies, We know how critical it is that information be processed and distributed efficiently and accurately. Aleut will continue to generate software updates at a quick cadence, adding capabilities that improve the functionality of the platform, and empower operators."
-Aleut Federal's Vice President of Technology Services, Geoff Vaughan.
FPED is a platform which takes a broad range of data including video, geospatial intelligence, photographs, and more, collected by aircraft in the field and exploits the data using subject matter experts located across the globe. Those experts then take the imagery and identify items of interest (e.g., weapons, vehicles, and troops). The annotated files are then disseminated to subsystems operated by external government agencies such as the Army, Navy and Marine Corps, who use it to generate intelligence reports on the status of the regions.
Under the newly awarded contract, Aleut will continue to support various sites within the FPED network to perform software and hardware updates and training, working with operators to learn what features and functionality options they'd like to see in future updates. Aleut uses human centered design principles to research requirements and make User Experience (UX) improvement recommendations for government approval.
This contract has a potential duration of three years – including one, one-year base period and two, one-year options. Aleut will partner with the incumbent, MetroStar. Aleut is proud to retain the original subcontractors and key members of the original project team, ensuring a seamless transition.
Formed in 2016, Aleut is a Small Business Administration certified 8(a) program participant, and Small Disadvantaged Business providing proven capabilities in the IT sector including, infrastructure and communications.
Aleut Information Technology, LLC is a wholly owned subsidiary of Aleut Federal, LLC, a holding company for federal subsidiaries of The Aleut Corporation (TAC). TAC was one of 13 original Alaska Native Corporations established under the Alaska Native Claims Settlement Act, passed by the U.S. Congress in 1971.
Aquia | August 22, 2022
Aquia Inc., a Service-Disabled Veteran-Owned Small Business specializing in cloud and cybersecurity professional services, today announced that it has joined the Digital Services Coalition (DSC) of companies working to make the government work better through digital change.
There are organizations inside the government (United States Digital Service/Corp, 18F, Presidential Innovation Fellows) that are already spearheading efforts to improve how government delivers services to the American public. But they need support from commercial tech firms to make sweeping changes to how things are done. Nimble, forward-thinking firms are the ones who can make this a reality.
"Aquia and the DSC have a lot of the same characteristics as organizations, Joining this team of dedicated professionals will ensure Aquia remains focused on the toughest challenges in government, and we know that this partnership will allow us to continue to be a force for good."
-Aquia Chief Executive Officer, David Maskeroni.
About Aquia Inc:
Aquia Inc. is a Service-Disabled Veteran-Owned Small Business based in Millsboro, DE. Aquia is a developer-centric company founded in 2021 by military veterans with a passion for the intersection of security/velocity and decades of experience driving transformational change across public sector, enterprise, and top-tier technology companies. At Aquia, we value trust, accountability, transparency, and diversity; and we've built these tenants into the DNA of our company.