Home > Resources > Articles > The Trump-Xi Summit and Beyond

The Trump-Xi Summit and Beyond

It would be comforting to believe that an agreement between the United States and China that deescalates the current trade war and resolves a number of key problems between the two would restore tranquility and mutual harmony. But history tells us that frictions and occasional disputes between a rising power with high aspirations and ambitions and an established power that has become accustomed to occupying a position of preeminence tend to be the norm.

Spotlight

Upper Moreland Township

Upper Moreland Township occupies an area of 7.5 square miles in the northeastern corner of Montgomery County, Pennsylvania. The 2000 census reported a total population of 24,993. Upper Moreland is part of the Philadelphia Metropolitan Area and is approximately 15 miles north of downtown Philadelphia. The Township is bordered by the Montgomery County communities of Hatboro, Upper Dublin, Abington, Bryn Athyn, and Lower Moreland while Bucks County lies to the north.

OTHER ARTICLES
Emerging Technology, Government Business

U.S. Engagement with WHO

Article | October 7, 2022

During the pandemic, the United States supported the WHO through collaborative operations. Let’s understand in detail below. The United States government has historically supported WHO financially, through involvement in governance and diplomacy, and through collaborative operations. A new chapter in the U.S. relationship with WHO began in 2020, following the start of the COVID-19 pandemic, when the Trump administration ceased financial support and started the process to withdraw the country from membership. Financial Support: The United States has traditionally been the single largest donor to WHO, but in the 2020–2021 period it was the second largest as other donors, particularly Germany, increased their contributions. The U.S. dropped to third place. The United States contributed an anticipated $581 million to the WHO in 2021 as a result of restored funding from the Biden administration, which included both assessed and voluntary contributions. The assessed contribution for the United States has been set at the maximum permitted rate of 22% of all assessed payments from member states for a number of years. The U.S. assessed contribution has been very consistent between FY 2014 and FY 2022, varying between $110 million and $123 million. Increased U.S. support for particular WHO initiatives, such as emergency response, may be reflected in higher levels of voluntary contributions. Other WHO initiatives supported by U.S. voluntary donations include the fight against polio, maternal, infant, and child health initiatives, food safety initiatives, and regulatory monitoring of pharmaceuticals. Governance Activities: The United States has long been a prominent and involved member of the World Health Assembly, sending a sizable delegation that is typically headed by a delegate from the Department of Health and Human Services and includes representatives from numerous other U.S. agencies and departments. Technical Support: Government officials from the United States frequently act as liaisons at WHO regional offices and headquarters, collaborating daily with employees on technical initiatives. Partnering Activities: The United States has collaborated with WHO both before and during epidemic responses and other global health emergencies, notably by joining multinational teams that WHO organises to look into and address outbreaks all around the world. For instance, the US collaborated with WHO and the larger global response to the 2014-onset Ebola epidemic in West Africa, and US scientists were a part of the WHO mission that visited China in February 2020 to evaluate their COVID-19 response.

Read More
Emerging Technology

Multidomain Architecture Strategic Definitions: Part One of Multidomain Architectures, the IT Manhattan Project, and Delivering the “Real” Zero Trust

Article | July 16, 2022

“Belonging to the essential nature of a thing; originating and included wholly within an organ or part.” That is the definition of “Intrinsic.” When we were developing the “IT Manhattan Project” framework, we were doing so in direct response to some of the most significant hacks in U.S. Federal history, which piled on to the already unprecedented push to expedite the modernizing of federal IT because of the COVID-19 response. The COVID-19 response shifted the way that the U.S. federal government operated, where our workforce worked from, the immediate need for mobile ‘available from anywhere’ workloads, and how to both secure and support that new way of doing federal business. A new, vigorous push towards rapidly modernizing federal IT environments was underway. Ultimately, it laid the groundwork for producing transformational federal memos and oversight by way of some of the following: Executive Order 14028: “Improving The Nation’s Cybersecurity” M-22-09: OMB’s Zero Trust Strategy M-22-09 NIST 800-53rev5: Fulfilling an expedited realization of the overall intent of NIST 800-53r5 through the emphasis on things like conditional access, TIC 3.0 frameworks, Secure Orchestration/Automation/Remediation, and modernized, agile approaches to secure micro-segmentation from Hybrid Environments up to Federal Cloud instances Overall mandates like these carry with them a consistent anthem driving at rapid IT modernization with rigorous proof of performance schedules attached. Piling on top of those Herculean efforts, the urgency was drastically increased by several of the highest profile cyber compromises in U.S. federal history. Rapid modernization had to happen right away. The time for IT transformation was here, backed by promises of significant funding and a high level of political visibility. The Shift to Zero Trust At their core intent, Zero Trust architectures are expected to provide a centralized policy structure that dictates how every individual flow in our IT environments are permitted to talk. No user, host, or flow is permitted without being subjected to rigorous authentication and authorization policy. This shifts our previous understanding of North-South, East-West traffic and how we police it. The foundational intent of Zero Trust architectures centers around applying unified policy to every transaction that occurs between enterprise resources, and doing so in ways that are agnostic to the IT Silo that they reside in. Zero Trust assumes there is no implicit trust granted to assets or user accounts based solely on their physical or network location.” NIST 800-207 aptly They go on to explain that the scope of this posture includes all assets, workflows, network accounts, and the like. In summary, police everything, abstract production traffic intent from the underlying infrastructure that supports it, and institute a unified security posture to execute the policing at every network entry point. Regardless of the domain. We all know that this is a tectonic but much-needed shift in our industry. I’d go so far as to say that the successful instantiation of this approach across Federal IT environments is critical to our national security going forward. Management Complexities Enterprise IT domains contain varied mixtures of OEM solutions, home-grown tools, and utilize a wide variety of protocols to intercommunicate that aren’t necessarily standardize. Each of these domains is normally managed by separate IT teams who specialize in maintaining those environments. In the federal landscape, each of these domains aren’t just managed by separate enterprise IT teams, but are commonly managed by different contractors. Therefore, IT security organizations have a difficult time achieving and maintaining the necessary operational awareness required to enforce centralized policy. These cultural complexities exacerbated by budgeting concerns have created a fatalistic mentality when it comes to far-reaching mandates. This is where the tectonic shift in architectural and administrative approach is so necessary. This is where multidomain architectures shine. Let’s define a common baseline of enterprise domains seen across traditional IT environments: Cloud Data Center Enterprise Networking Extended Enterprise (IoT, OT/ICS) Remote Access But to deliver a successful Zero Trust across the enterprise, it is first necessary to understand some foundational building blocks on which to construct our architectural approach: We can’t have MULTIDOMAIN POLICY without first achieving fuller We can’t deliver macro and micro-segmentation without first having robust MULTIDOMAIN We can’t have multi-vendor MULTIDOMAIN Zero Trust POLICY without sensical INTEGRATIONS to stitch each enterprise domain together. Let’s face it, enterprise IT environments don’t simply include infrastructure from a single manufacturer, or even a few key manufacturers. Rather, our Enterprise IT environments are represented by a plethora of IT manufacturers specializing in different niches of IT and the domains they are commonly found in. These environments are managed by different Federal IT organizations, different contractors who support these Federal IT organizations, and many different teams that support each common IT silo. Different teams that support oft-compartmentalized areas like Network Security Operations, Network Operations, Data Center Operations, Institutional Services, Wide Area Networking contracts, Operational Technologies, and dotted lines to different leadership oversight like CIO Programs, CTO Architecture, the Cyber Security Office, and the audit oversight bodies that they are subjected to. Each of these make up a complex support structure that isn’t necessarily streamlined for efficiency. Summary and Overarching Goals In articles to follow, you’ll see us referencing the IT Manhattan Project framework several times. Though many details of the framework can’t be discussed due to their sensitivity, the foundational principles are relevant across the board when pursuing intrinsic multidomain Zero Trust. Establish Visibility (Administration, Telemetry, Assurance) Define Straightforward Policy Structure and Hierarchy (Auth Chains) Perform Multidomain Integrations (API Integrations) Deploy Software-Defined Framework (Day-0, Programmable Fabrics, Multi-OEM Fabric Integrations) Establish Sensical Automation Runbooks (Day-2 Operations) We will also explore some areas that deliver unexpected value to the agency business in immediate ways. All of this will help create a cohesive story that helps CIOs, CISOs, and enterprise architects alike communicate the criticality of this multidomain Zero Trust approach to agency leaders across the federal spectrum.

Read More
Government Business

Collaborative initiatives offer a clear path out of America’s newest recession

Article | July 11, 2022

While Americans wait to see if Congress will pass an infrastructure bill, alternative funding and collaborative initiatives are becoming the norm. Even the recent announcement that the U.S. is now in a designated recession has not caused Congress to focus specifically on economic recovery. Economists, financial experts, industry leaders, and elected officials all know that funding large public projects stimulates the economy and creates jobs. They also know that throughout history, infrastructure reform has been a proven path to economic recovery. Currently, private sector investors stand ready to fund infrastructure projects in America and local government leaders are moving forward to launch projects of all types. Soon, there may be little need for Congress to do anything. The opportunity to lead in this area may soon be usurped by visionary regional leaders and private sector partners. Destruction brought on by climate change, the devastation resulting from COVID-19, cyber threats on public networks, lack of adequate broadband, and a desperate need for new sources of revenue – these are the problems that have forced visionary leaders to take action and not wait for Congress. Now, change is coming on strong, and that’s a very good thing! Airports are not waiting to launch critical and long-overdue expansions. State leaders already are combating rising seas and finding ways to install broadband. Wastewater plants are being constructed or upgraded, and various transportation projects are being launched. Because local leaders lacked the luxury of waiting to see if Congress would endorse or partly fund infrastructure projects, they found alternative funding sources. Congress could have, and should have, already passed an infrastructure bill, even if it only established guidelines or outlined best practices. The Canadian Council for Public Private Partnerships would have been a good model to follow. An endorsement or a statement of support from Congress related to public-private partnerships (P3s) would still be encouraging. But, with or without encouragement, regional leaders throughout the country are working with industry, nonprofit organizations, academia, and investors to launch large infrastructure projects. And, as that happens, local economies benefit and jobs are created. Entire communities and numbers of citizens benefit from the good that emanates from public safety, quality of life, asset preservation, sustainability, and taxpayer relief. But, to the surprise of no one, infrastructure projects are costly and many of them require a number of consolidated funding sources. Infrastructure projects also may be funded through a revenue repayment model that compensates private sector investors over a decade or two. Other projects are funded by bonds, grants, and federal programs such as the Tax Cuts and Jobs Act which incentivizes investment into designated Opportunity Zone regions of the country. Additionally, funding is still available from federal programs that have been in existence for decades. The Federal Emergency Management Agency (FEMA), Army Corps of Engineers, Department of Housing and Urban Development (HUD), and Community Development Block Grant programs all have funding that may be merged with other alternative funding sources. Many state legislatures have allocated funding for ‘rainy days’, emergencies and/or ‘resiliency’ efforts. Special Districts also may be created by cities, a process that authorizes citizens to tax themselves for critical infrastructure projects. Finding numerous funding sources is not difficult and not a hurdle that stops infrastructure reform. Two rather important issues, however, have slowed public acceptance of alternative funding and public-private partnerships – a lack of understanding by citizens about the cost and danger of not doing anything and the fact that the public at large does not completely understand the history or the success of P3s. Too many citizens view private sector investment into public projects as a new or risky concept, which is not the case. Collaborative initiatives have been responsible for the building of America’s infrastructure for more than 100 years. And, the public-private partnership model is common throughout the world and has been tested over many decades. Here are but a few examples of visionary infrastructure initiatives happening now in America. In Virginia, the Greene County Board of Supervisors has approved guidelines for establishing strategic public-private partnerships to develop numerous types of P3 projects in the county. This action will enable the Greene County School Board to enter P3s for the purpose of building educational facilities. Other possible projects likely will include landfills, drinking water production, and distribution systems. Projects also may include fire department facilities, education construction including stadiums, public safety buildings, utility and telecommunications initiatives, and broadband infrastructure. The University of California (UC) has provided a 2019-2025 Capital Finance Plan (CFP) that represents $52 billion of capital that will be required by the campuses and its medical centers. The CFP outlines plans for proposed capital projects, P3s and the acquisition of real property. UC has found the P3 model to be efficient, especially for campus housing. The Irvine campus has a long history of partnering with third-party entities to advance its strategic goals. The Yuma, Arizona City Council has approved a $51.4 million increase from last year for a Capital Improvement Program (CIP) budget. The city expects 45 percent of the costs to be obtained through grants, reimbursements, and P3s. The plan outlines 54 projects and funding plans of $20.3 million for projects in the Yuma Crossing National Heritage Area. The city also plans to augment funding with a federal grant and possibly private sector investment. It has scheduled a regional fiber optic infrastructure project for 2021 and has announced interest in a P3 engagement as the delivery model. Florida’s Palm Beach Town Council recently approved $316,380 for a water supply feasibility study. An engineering firm will address the town’s need to explore different ways to provide residents potable water. A plan to determine how to meet future water demand is the objective. One option under consideration is to enter into a public-private-partnership to accomplish this objective. Iowa State University is taking steps to become coal-free and reduce greenhouse gas emissions by 35 percent over the next three years. A P3 is being considered for the operation of its utility system. The university’s Board of Regents this month gave approval for a planning process to begin. The state of Nebraska is considering a public-private partnership to build a new 1,600-bed prison to deal with overcrowding and staffing issues. Cost of the new prison has been projected to be in the $200 million range or higher, and the state anticipates that a P3 will be the delivery method. The department announced that the project would potentially meet space needs for the next 100 years. These projects offer just a sampling of what is happening throughout America. State and local leaders are moving forward and not waiting for guidance or encouragement. Instead, most have grabbed the reins of America’s race to the future, and started to address the country’s infrastructure needs. That’s comforting, because there is much to be done. America’s global competitiveness truly hangs in the balance along with the well-being of millions of families impacted by unemployment. A recession is never good, but this one could be short. Here’s hoping the media, citizens at large, and others who understand the country’s critical infrastructure problems will find ways locally to step up and encourage other elected leaders to support this clear path out of the current recession. Mary Scott Nabers is president and CEO of Strategic Partnerships Inc., a business development company specializing in government contracting and procurement consulting throughout the U.S. Her recently released book, Inside the Infrastructure Revolution: A Roadmap for Building America, is a handbook for contractors, investors and the public at large seeking to explore how public-private partnerships or joint ventures can help finance their infrastructure projects.

Read More

The State of Federal Thinking on Zero Trust

Article | June 11, 2020

As federal agencies continue to support large numbers of remote workers, IT leaders have started to evolve their thinking on zero-trust security architectures. Increasingly, they are becoming more comfortable with the concept and are seeking to lay the foundation for deployments. Zero trust represents a mindset shift in cybersecurity in which every transaction is verified before access is granted to users and devices. In the federal government, it is still a relatively nascent approach, with some pilot programs here and there. However, IT leaders seem to recognize that cybersecurity models are increasingly going to be defined by a zero-trust architecture.

Read More
Emerging Technology, Government Business

How Does Government Operations Continuity Help Them Perform Better?

Article | October 7, 2022

During the pandemic, the United States supported the WHO through collaborative operations. Let’s understand in detail below. The United States government has historically supported WHO financially, through involvement in governance and diplomacy, and through collaborative operations. A new chapter in the U.S. relationship with WHO began in 2020, following the start of the COVID-19 pandemic, when the Trump administration ceased financial support and started the process to withdraw the country from membership. Financial Support: The United States has traditionally been the single largest donor to WHO, but in the 2020–2021 period it was the second largest as other donors, particularly Germany, increased their contributions. The U.S. dropped to third place. The United States contributed an anticipated $581 million to the WHO in 2021 as a result of restored funding from the Biden administration, which included both assessed and voluntary contributions. The assessed contribution for the United States has been set at the maximum permitted rate of 22% of all assessed payments from member states for a number of years. The U.S. assessed contribution has been very consistent between FY 2014 and FY 2022, varying between $110 million and $123 million. Increased U.S. support for particular WHO initiatives, such as emergency response, may be reflected in higher levels of voluntary contributions. Other WHO initiatives supported by U.S. voluntary donations include the fight against polio, maternal, infant, and child health initiatives, food safety initiatives, and regulatory monitoring of pharmaceuticals. Governance Activities: The United States has long been a prominent and involved member of the World Health Assembly, sending a sizable delegation that is typically headed by a delegate from the Department of Health and Human Services and includes representatives from numerous other U.S. agencies and departments. Technical Support: Government officials from the United States frequently act as liaisons at WHO regional offices and headquarters, collaborating daily with employees on technical initiatives. Partnering Activities: The United States has collaborated with WHO both before and during epidemic responses and other global health emergencies, notably by joining multinational teams that WHO organises to look into and address outbreaks all around the world. For instance, the US collaborated with WHO and the larger global response to the 2014-onset Ebola epidemic in West Africa, and US scientists were a part of the WHO mission that visited China in February 2020 to evaluate their COVID-19 response.

Read More
Emerging Technology

The Advantages of Introducing 5G to the Federal Government

Article | July 16, 2022

“Belonging to the essential nature of a thing; originating and included wholly within an organ or part.” That is the definition of “Intrinsic.” When we were developing the “IT Manhattan Project” framework, we were doing so in direct response to some of the most significant hacks in U.S. Federal history, which piled on to the already unprecedented push to expedite the modernizing of federal IT because of the COVID-19 response. The COVID-19 response shifted the way that the U.S. federal government operated, where our workforce worked from, the immediate need for mobile ‘available from anywhere’ workloads, and how to both secure and support that new way of doing federal business. A new, vigorous push towards rapidly modernizing federal IT environments was underway. Ultimately, it laid the groundwork for producing transformational federal memos and oversight by way of some of the following: Executive Order 14028: “Improving The Nation’s Cybersecurity” M-22-09: OMB’s Zero Trust Strategy M-22-09 NIST 800-53rev5: Fulfilling an expedited realization of the overall intent of NIST 800-53r5 through the emphasis on things like conditional access, TIC 3.0 frameworks, Secure Orchestration/Automation/Remediation, and modernized, agile approaches to secure micro-segmentation from Hybrid Environments up to Federal Cloud instances Overall mandates like these carry with them a consistent anthem driving at rapid IT modernization with rigorous proof of performance schedules attached. Piling on top of those Herculean efforts, the urgency was drastically increased by several of the highest profile cyber compromises in U.S. federal history. Rapid modernization had to happen right away. The time for IT transformation was here, backed by promises of significant funding and a high level of political visibility. The Shift to Zero Trust At their core intent, Zero Trust architectures are expected to provide a centralized policy structure that dictates how every individual flow in our IT environments are permitted to talk. No user, host, or flow is permitted without being subjected to rigorous authentication and authorization policy. This shifts our previous understanding of North-South, East-West traffic and how we police it. The foundational intent of Zero Trust architectures centers around applying unified policy to every transaction that occurs between enterprise resources, and doing so in ways that are agnostic to the IT Silo that they reside in. Zero Trust assumes there is no implicit trust granted to assets or user accounts based solely on their physical or network location.” NIST 800-207 aptly They go on to explain that the scope of this posture includes all assets, workflows, network accounts, and the like. In summary, police everything, abstract production traffic intent from the underlying infrastructure that supports it, and institute a unified security posture to execute the policing at every network entry point. Regardless of the domain. We all know that this is a tectonic but much-needed shift in our industry. I’d go so far as to say that the successful instantiation of this approach across Federal IT environments is critical to our national security going forward. Management Complexities Enterprise IT domains contain varied mixtures of OEM solutions, home-grown tools, and utilize a wide variety of protocols to intercommunicate that aren’t necessarily standardize. Each of these domains is normally managed by separate IT teams who specialize in maintaining those environments. In the federal landscape, each of these domains aren’t just managed by separate enterprise IT teams, but are commonly managed by different contractors. Therefore, IT security organizations have a difficult time achieving and maintaining the necessary operational awareness required to enforce centralized policy. These cultural complexities exacerbated by budgeting concerns have created a fatalistic mentality when it comes to far-reaching mandates. This is where the tectonic shift in architectural and administrative approach is so necessary. This is where multidomain architectures shine. Let’s define a common baseline of enterprise domains seen across traditional IT environments: Cloud Data Center Enterprise Networking Extended Enterprise (IoT, OT/ICS) Remote Access But to deliver a successful Zero Trust across the enterprise, it is first necessary to understand some foundational building blocks on which to construct our architectural approach: We can’t have MULTIDOMAIN POLICY without first achieving fuller We can’t deliver macro and micro-segmentation without first having robust MULTIDOMAIN We can’t have multi-vendor MULTIDOMAIN Zero Trust POLICY without sensical INTEGRATIONS to stitch each enterprise domain together. Let’s face it, enterprise IT environments don’t simply include infrastructure from a single manufacturer, or even a few key manufacturers. Rather, our Enterprise IT environments are represented by a plethora of IT manufacturers specializing in different niches of IT and the domains they are commonly found in. These environments are managed by different Federal IT organizations, different contractors who support these Federal IT organizations, and many different teams that support each common IT silo. Different teams that support oft-compartmentalized areas like Network Security Operations, Network Operations, Data Center Operations, Institutional Services, Wide Area Networking contracts, Operational Technologies, and dotted lines to different leadership oversight like CIO Programs, CTO Architecture, the Cyber Security Office, and the audit oversight bodies that they are subjected to. Each of these make up a complex support structure that isn’t necessarily streamlined for efficiency. Summary and Overarching Goals In articles to follow, you’ll see us referencing the IT Manhattan Project framework several times. Though many details of the framework can’t be discussed due to their sensitivity, the foundational principles are relevant across the board when pursuing intrinsic multidomain Zero Trust. Establish Visibility (Administration, Telemetry, Assurance) Define Straightforward Policy Structure and Hierarchy (Auth Chains) Perform Multidomain Integrations (API Integrations) Deploy Software-Defined Framework (Day-0, Programmable Fabrics, Multi-OEM Fabric Integrations) Establish Sensical Automation Runbooks (Day-2 Operations) We will also explore some areas that deliver unexpected value to the agency business in immediate ways. All of this will help create a cohesive story that helps CIOs, CISOs, and enterprise architects alike communicate the criticality of this multidomain Zero Trust approach to agency leaders across the federal spectrum.

Read More
Government Business

Tech Trends that Affect Governments in 2022

Article | July 11, 2022

While Americans wait to see if Congress will pass an infrastructure bill, alternative funding and collaborative initiatives are becoming the norm. Even the recent announcement that the U.S. is now in a designated recession has not caused Congress to focus specifically on economic recovery. Economists, financial experts, industry leaders, and elected officials all know that funding large public projects stimulates the economy and creates jobs. They also know that throughout history, infrastructure reform has been a proven path to economic recovery. Currently, private sector investors stand ready to fund infrastructure projects in America and local government leaders are moving forward to launch projects of all types. Soon, there may be little need for Congress to do anything. The opportunity to lead in this area may soon be usurped by visionary regional leaders and private sector partners. Destruction brought on by climate change, the devastation resulting from COVID-19, cyber threats on public networks, lack of adequate broadband, and a desperate need for new sources of revenue – these are the problems that have forced visionary leaders to take action and not wait for Congress. Now, change is coming on strong, and that’s a very good thing! Airports are not waiting to launch critical and long-overdue expansions. State leaders already are combating rising seas and finding ways to install broadband. Wastewater plants are being constructed or upgraded, and various transportation projects are being launched. Because local leaders lacked the luxury of waiting to see if Congress would endorse or partly fund infrastructure projects, they found alternative funding sources. Congress could have, and should have, already passed an infrastructure bill, even if it only established guidelines or outlined best practices. The Canadian Council for Public Private Partnerships would have been a good model to follow. An endorsement or a statement of support from Congress related to public-private partnerships (P3s) would still be encouraging. But, with or without encouragement, regional leaders throughout the country are working with industry, nonprofit organizations, academia, and investors to launch large infrastructure projects. And, as that happens, local economies benefit and jobs are created. Entire communities and numbers of citizens benefit from the good that emanates from public safety, quality of life, asset preservation, sustainability, and taxpayer relief. But, to the surprise of no one, infrastructure projects are costly and many of them require a number of consolidated funding sources. Infrastructure projects also may be funded through a revenue repayment model that compensates private sector investors over a decade or two. Other projects are funded by bonds, grants, and federal programs such as the Tax Cuts and Jobs Act which incentivizes investment into designated Opportunity Zone regions of the country. Additionally, funding is still available from federal programs that have been in existence for decades. The Federal Emergency Management Agency (FEMA), Army Corps of Engineers, Department of Housing and Urban Development (HUD), and Community Development Block Grant programs all have funding that may be merged with other alternative funding sources. Many state legislatures have allocated funding for ‘rainy days’, emergencies and/or ‘resiliency’ efforts. Special Districts also may be created by cities, a process that authorizes citizens to tax themselves for critical infrastructure projects. Finding numerous funding sources is not difficult and not a hurdle that stops infrastructure reform. Two rather important issues, however, have slowed public acceptance of alternative funding and public-private partnerships – a lack of understanding by citizens about the cost and danger of not doing anything and the fact that the public at large does not completely understand the history or the success of P3s. Too many citizens view private sector investment into public projects as a new or risky concept, which is not the case. Collaborative initiatives have been responsible for the building of America’s infrastructure for more than 100 years. And, the public-private partnership model is common throughout the world and has been tested over many decades. Here are but a few examples of visionary infrastructure initiatives happening now in America. In Virginia, the Greene County Board of Supervisors has approved guidelines for establishing strategic public-private partnerships to develop numerous types of P3 projects in the county. This action will enable the Greene County School Board to enter P3s for the purpose of building educational facilities. Other possible projects likely will include landfills, drinking water production, and distribution systems. Projects also may include fire department facilities, education construction including stadiums, public safety buildings, utility and telecommunications initiatives, and broadband infrastructure. The University of California (UC) has provided a 2019-2025 Capital Finance Plan (CFP) that represents $52 billion of capital that will be required by the campuses and its medical centers. The CFP outlines plans for proposed capital projects, P3s and the acquisition of real property. UC has found the P3 model to be efficient, especially for campus housing. The Irvine campus has a long history of partnering with third-party entities to advance its strategic goals. The Yuma, Arizona City Council has approved a $51.4 million increase from last year for a Capital Improvement Program (CIP) budget. The city expects 45 percent of the costs to be obtained through grants, reimbursements, and P3s. The plan outlines 54 projects and funding plans of $20.3 million for projects in the Yuma Crossing National Heritage Area. The city also plans to augment funding with a federal grant and possibly private sector investment. It has scheduled a regional fiber optic infrastructure project for 2021 and has announced interest in a P3 engagement as the delivery model. Florida’s Palm Beach Town Council recently approved $316,380 for a water supply feasibility study. An engineering firm will address the town’s need to explore different ways to provide residents potable water. A plan to determine how to meet future water demand is the objective. One option under consideration is to enter into a public-private-partnership to accomplish this objective. Iowa State University is taking steps to become coal-free and reduce greenhouse gas emissions by 35 percent over the next three years. A P3 is being considered for the operation of its utility system. The university’s Board of Regents this month gave approval for a planning process to begin. The state of Nebraska is considering a public-private partnership to build a new 1,600-bed prison to deal with overcrowding and staffing issues. Cost of the new prison has been projected to be in the $200 million range or higher, and the state anticipates that a P3 will be the delivery method. The department announced that the project would potentially meet space needs for the next 100 years. These projects offer just a sampling of what is happening throughout America. State and local leaders are moving forward and not waiting for guidance or encouragement. Instead, most have grabbed the reins of America’s race to the future, and started to address the country’s infrastructure needs. That’s comforting, because there is much to be done. America’s global competitiveness truly hangs in the balance along with the well-being of millions of families impacted by unemployment. A recession is never good, but this one could be short. Here’s hoping the media, citizens at large, and others who understand the country’s critical infrastructure problems will find ways locally to step up and encourage other elected leaders to support this clear path out of the current recession. Mary Scott Nabers is president and CEO of Strategic Partnerships Inc., a business development company specializing in government contracting and procurement consulting throughout the U.S. Her recently released book, Inside the Infrastructure Revolution: A Roadmap for Building America, is a handbook for contractors, investors and the public at large seeking to explore how public-private partnerships or joint ventures can help finance their infrastructure projects.

Read More

The State of Federal Thinking on Zero Trust

Article | June 11, 2020

As federal agencies continue to support large numbers of remote workers, IT leaders have started to evolve their thinking on zero-trust security architectures. Increasingly, they are becoming more comfortable with the concept and are seeking to lay the foundation for deployments. Zero trust represents a mindset shift in cybersecurity in which every transaction is verified before access is granted to users and devices. In the federal government, it is still a relatively nascent approach, with some pilot programs here and there. However, IT leaders seem to recognize that cybersecurity models are increasingly going to be defined by a zero-trust architecture.

Read More
MORE ARTICLES

Spotlight

Upper Moreland Township

Upper Moreland Township occupies an area of 7.5 square miles in the northeastern corner of Montgomery County, Pennsylvania. The 2000 census reported a total population of 24,993. Upper Moreland is part of the Philadelphia Metropolitan Area and is approximately 15 miles north of downtown Philadelphia. The Township is bordered by the Montgomery County communities of Hatboro, Upper Dublin, Abington, Bryn Athyn, and Lower Moreland while Bucks County lies to the north.

Related News

Emerging Technology, Cybersecurity

Red River Secures Army ITES-3S Contract

Businesswire | March 23, 2023

Red River, a technology transformation company serving government and enterprise customers, today announced that it is now an authorized provider on the U.S. Army’s Information Technology Enterprise Solutions 3 Services (ITES-3S) contract. Awarded by the Computer Hardware, Enterprise Software and Solutions (CHESS) and the Army Contracting Command - Rock Island (ACC-RI), ITES-3S is a nine-year, $12.1 billion, indefinite delivery indefinite quantity (IDIQ) contract. The ITES-3S IDIQ will provide a broad range of enterprise information technology services and support to the U.S. Army and other authorized Federal Government agencies. Types of information technology services available through the ITES-3S IDIQ include Program Management; Cybersecurity/Information Assurance; Enterprise Design, Integration and Consolidation; Network/Systems Operation and Maintenance; Telecommunications; Supply Chain Management; Operation and Maintenance; Business Process Engineering; and Information Technology Education and Training. This award demonstrates Red River’s longstanding commitment to providing superior professional services to the U.S. Army and the opportunity to continue to serve and support the men and women in uniform at home and abroad. Red River has more than 25 years as a trusted technology and services provider to the U.S. government and Department of Defense (DoD). “We are excited to continue our longstanding history of supporting the technology services needs of the Army and other government agencies supported through this contract vehicle,” said Brian Roach, CEO for Red River. “We look forward to collaborating with DoD technology leaders to support their mission requirements in areas such as cybersecurity, managed services, cloud, infrastructure and collaboration. This is a significant addition to our contracts portfolio and strengthens our position as a leading technology and services provider to the DoD and the U.S. government as a whole.” About Red River Red River brings together the ideal combination of talent, partners and products to disrupt the status quo in technology and drive success for business and government in ways previously unattainable. Red River serves organizations well beyond traditional technology integration, bringing more than 25 years of experience and mission-critical expertise in managed services, cybersecurity, infrastructure, collaboration and cloud solutions.

Read More

Emerging Technology

New Iridium Certus Service Providers to Support U.S. Government Customers

Iridium Communications | October 13, 2022

Iridium Communications Inc. (Nasdaq: IRDM) announced today that Iridium partners MetOcean Telematics, NAL Research, and Trace Systems are now Iridium Certus® service providers for U.S. government customers, joining Satcom Direct, in this capacity. These unique, long-term deals will allow these companies to provide Iridium's secure global satellite broadband and midband connectivity for mobile voice and data services to the U.S. government through a dedicated gateway. By leveraging the inherent advantages of the Iridium® network, including truly global, on-the-move L-band connectivity, MetOcean Telematics, NAL Research, and Trace Systems are now able to deliver enhanced capabilities that meet Communications Security (ComSec) requirements for the Department of Defense (DoD) and warfighter. These capabilities include global and resilient voice, data and 1080 HD live-action video over satcom across all domains (land, maritime and air) on the move. The service also serves as the "ACE in PACE" – alternate, contingent or emergency communications link, supports early entry communications packages and command and control for autonomous or uncrewed systems and data backhaul. Whether in high-risk combat zones or during inclement weather events, the Iridium network provides uncompromising satellite communications that keeps users connected when it's needed most. Iridium Certus™ terminals enable U.S. government users to securely connect remote assets to respective command and control centers in the U.S. in a cost-effective and secure manner, from anywhere in the world. "Iridium Certus continues to provide mission-critical broadband and midband capabilities to the modern warfighter and we're excited to add new service providers to expand the distribution of these offerings, With the addition of Iridium Certus for the government, these partners will play a critical role in supporting DoD personnel as they utilize this value-added service." -Scott Scheimreif, Executive Vice President of Government Programs, Iridium. Unique in the satellite industry, Iridium Certus is the only broadband service that provides highly reliable, truly global, weather-resilient connectivity for on-the-move internet and high-quality voice access. Iridium Certus terminals are low-profile, compared to the competition, and capable of maintaining broadband connectivity in fast-paced, unpredictable environments on land, at sea, in the air — and can do it without landing in or passing through non-U.S. territories. Iridium Communications Inc: Iridium® is the only mobile voice and data satellite communications network that spans the entire globe. Iridium enables connections between people, organizations and assets to and from anywhere, in real time. Together with its ecosystem of partner companies, Iridium delivers an innovative and rich portfolio of reliable solutions for markets that require truly global communications. In 2019, the company completed a generational upgrade of its satellite network and launched its new specialty broadband service, Iridium Certus®. Iridium Communications Inc. is headquartered in McLean, Va., U.S.A., and its common stock trades on the Nasdaq Global Select Market under the ticker symbol IRDM.

Read More

Cybersecurity

One Year In, Cyber Executive Order Progress is Under Way, But Early Stage

MeriTalk | May 06, 2022

Ninety-one percent of Federal cybersecurity decision-makers say the 2021 Executive Order (EO) on Improving the Nation’s Cybersecurity has made U.S. data and critical infrastructure safer, but just 28 percent say significantly safer, according to Impact Assessment: Cyber EO Year One, a new study from MeriTalk, a public-private partnership focused on improving the outcomes of government information technology (IT). The report explores perspectives on progress against Cyber EO goals, identifies what successful agencies do differently, and finds the fault lines where agency cyber leaders say they need more help to succeed. Most Federal cyber decision-makers (78 percent) agree the steps outlined in the Cyber EO are necessary to protect our nation. Implementing software supply chain security and migrating to a zero-trust architecture are the two most important factors for national cybersecurity, the research highlights. And, while just 15 percent have seen tangible improvements because of EO efforts to date, a significant portion expects to see an impact within the next year. Federal cyber leaders confirm initial progress in areas including vulnerability detection, software supply chain security, vulnerability response, and investigative and remediation capabilities. Just over half confirm IT management and staff are placing increased priority on cybersecurity, and just over half are collecting more cyber data than in the past. But, across the board, progress against EO goals is still in the early stages. Fewer than half rate their agencies’ progress against key EO goals as “excellent.” For example, 36 percent rate progress toward creating a formal strategy as excellent; 34 percent rate progress toward investing in endpoint detection and response (EDR) as excellent; and, 33 percent rate progress migrating to secure cloud solutions, as excellent. When asked about the importance of zero trust, 82 percent agree that allocating staff and budget resources to zero trust is vital to national security and almost all, 96 percent, agree the Federal zero trust strategy is somewhat or very helpful. Despite the high priority, just 30 percent of Federal cyber decision-makers rate their zero trust progress as “excellent” and many, 67 percent, say the EO’s three-year window for implementing a zero trust architecture is not realistic. Zero Trust is the gold standard for cybersecurity, so we're encouraged to see the EO is prioritizing that approach. In addition, cloud-native endpoint detection and response capabilities can significantly strengthen the cybersecurity posture for the federal government, especially when integrated with other security capabilities including identity security, threat intelligence, and managed threat hunting. These concepts have become cybersecurity best practices for the private sector’s most technologically advanced businesses, and we encourage the public sector to continue to embrace these technologies and strategies.” Drew Bagley, vice president and counsel for Privacy and Cyber Policy, CrowdStrike “Getting to zero trust is not easy. The detail provided in the multi-step guidance from OMB provides a path, but there is no single box you can buy to meet the varied needs of the five zero trust pillars,” says Stephen Kovac, Chief Compliance Officer and Head of Global Government Affairs, Zscaler. “You need multiple solutions from varying vendors that work together with seamless integration to achieve true zero trust – it is a team sport. OMB has done a good job in helping to define those rules, with rule one being to keep users off the network. If they can’t reach you, they can’t breach you.” Funding is another roadblock. Just 14 percent report they have all funding needed to meet Cyber EO requirements. One-third say they have half, or less than half, of the funding needed. “The sea change is the focus on comprehensive cyber resiliency,” says Nicole Burdette, principal, MeriTalk. “The EO provided direction, and Federal cyber leaders are now doing the hard work. But progress requires sustained funding and resource commitment. The research shows the gaps.” “The U.S. federal government is taking important steps to improve the nation’s cybersecurity posture,” said Dave Levy, Vice President of U.S. Government, Nonprofit, and Healthcare at Amazon Web Services (AWS). “In the Cyber EO, the White House directs federal agencies to adopt security best practices, implement zero trust architectures, and accelerate migration to secure cloud services. Organizations of all sizes should consider similar principles and practices to enhance their cybersecurity and protect employees and sensitive data against cyberattack.” What are the leaders doing differently? Cyber EO champions (leaders who give their agency’s EO progress an A) are predictably more likely than their peers to say they have all the funding they need. They are also more likely to have their chief information officer (CIO) leading their zero-trust implementation (67 percent to 28 percent). When asked for perspectives on what’s needed to achieve cyber progress, the research identified the Federal wish list: Workforce training and expertise Stronger executive buy-in Detailed direction from agency IT leadership Centers of Excellence (COEs) in the government to lend expertise Three-fourths of Federal cyber decision-makers also say the EO should have been more authoritative with private-sector directives. The Impact Assessment: Cyber EO Year One report is based on an online survey of more than 150 Federal cybersecurity decision-makers familiar with their agencies’ cybersecurity initiatives, including zero trust strategies, in March 2022 and is underwritten by Amazon Web Services (AWS), CrowdStrike, and Zscaler. The report has a margin of error of ±7.7 percent at a 95 percent confidence level. About MeriTalk The voice of tomorrow’s government today, MeriTalk is a public-private partnership focused on improving the outcomes of government IT. Our award-winning editorial team and world-class events and research staff produces unmatched news, analysis, and insight. The goal: a more efficient, responsive, and citizen-centric government. MeriTalk connects with an audience of 160,000 Federal community contacts.

Read More

Emerging Technology, Cybersecurity

Red River Secures Army ITES-3S Contract

Businesswire | March 23, 2023

Red River, a technology transformation company serving government and enterprise customers, today announced that it is now an authorized provider on the U.S. Army’s Information Technology Enterprise Solutions 3 Services (ITES-3S) contract. Awarded by the Computer Hardware, Enterprise Software and Solutions (CHESS) and the Army Contracting Command - Rock Island (ACC-RI), ITES-3S is a nine-year, $12.1 billion, indefinite delivery indefinite quantity (IDIQ) contract. The ITES-3S IDIQ will provide a broad range of enterprise information technology services and support to the U.S. Army and other authorized Federal Government agencies. Types of information technology services available through the ITES-3S IDIQ include Program Management; Cybersecurity/Information Assurance; Enterprise Design, Integration and Consolidation; Network/Systems Operation and Maintenance; Telecommunications; Supply Chain Management; Operation and Maintenance; Business Process Engineering; and Information Technology Education and Training. This award demonstrates Red River’s longstanding commitment to providing superior professional services to the U.S. Army and the opportunity to continue to serve and support the men and women in uniform at home and abroad. Red River has more than 25 years as a trusted technology and services provider to the U.S. government and Department of Defense (DoD). “We are excited to continue our longstanding history of supporting the technology services needs of the Army and other government agencies supported through this contract vehicle,” said Brian Roach, CEO for Red River. “We look forward to collaborating with DoD technology leaders to support their mission requirements in areas such as cybersecurity, managed services, cloud, infrastructure and collaboration. This is a significant addition to our contracts portfolio and strengthens our position as a leading technology and services provider to the DoD and the U.S. government as a whole.” About Red River Red River brings together the ideal combination of talent, partners and products to disrupt the status quo in technology and drive success for business and government in ways previously unattainable. Red River serves organizations well beyond traditional technology integration, bringing more than 25 years of experience and mission-critical expertise in managed services, cybersecurity, infrastructure, collaboration and cloud solutions.

Read More

Emerging Technology

New Iridium Certus Service Providers to Support U.S. Government Customers

Iridium Communications | October 13, 2022

Iridium Communications Inc. (Nasdaq: IRDM) announced today that Iridium partners MetOcean Telematics, NAL Research, and Trace Systems are now Iridium Certus® service providers for U.S. government customers, joining Satcom Direct, in this capacity. These unique, long-term deals will allow these companies to provide Iridium's secure global satellite broadband and midband connectivity for mobile voice and data services to the U.S. government through a dedicated gateway. By leveraging the inherent advantages of the Iridium® network, including truly global, on-the-move L-band connectivity, MetOcean Telematics, NAL Research, and Trace Systems are now able to deliver enhanced capabilities that meet Communications Security (ComSec) requirements for the Department of Defense (DoD) and warfighter. These capabilities include global and resilient voice, data and 1080 HD live-action video over satcom across all domains (land, maritime and air) on the move. The service also serves as the "ACE in PACE" – alternate, contingent or emergency communications link, supports early entry communications packages and command and control for autonomous or uncrewed systems and data backhaul. Whether in high-risk combat zones or during inclement weather events, the Iridium network provides uncompromising satellite communications that keeps users connected when it's needed most. Iridium Certus™ terminals enable U.S. government users to securely connect remote assets to respective command and control centers in the U.S. in a cost-effective and secure manner, from anywhere in the world. "Iridium Certus continues to provide mission-critical broadband and midband capabilities to the modern warfighter and we're excited to add new service providers to expand the distribution of these offerings, With the addition of Iridium Certus for the government, these partners will play a critical role in supporting DoD personnel as they utilize this value-added service." -Scott Scheimreif, Executive Vice President of Government Programs, Iridium. Unique in the satellite industry, Iridium Certus is the only broadband service that provides highly reliable, truly global, weather-resilient connectivity for on-the-move internet and high-quality voice access. Iridium Certus terminals are low-profile, compared to the competition, and capable of maintaining broadband connectivity in fast-paced, unpredictable environments on land, at sea, in the air — and can do it without landing in or passing through non-U.S. territories. Iridium Communications Inc: Iridium® is the only mobile voice and data satellite communications network that spans the entire globe. Iridium enables connections between people, organizations and assets to and from anywhere, in real time. Together with its ecosystem of partner companies, Iridium delivers an innovative and rich portfolio of reliable solutions for markets that require truly global communications. In 2019, the company completed a generational upgrade of its satellite network and launched its new specialty broadband service, Iridium Certus®. Iridium Communications Inc. is headquartered in McLean, Va., U.S.A., and its common stock trades on the Nasdaq Global Select Market under the ticker symbol IRDM.

Read More

Cybersecurity

One Year In, Cyber Executive Order Progress is Under Way, But Early Stage

MeriTalk | May 06, 2022

Ninety-one percent of Federal cybersecurity decision-makers say the 2021 Executive Order (EO) on Improving the Nation’s Cybersecurity has made U.S. data and critical infrastructure safer, but just 28 percent say significantly safer, according to Impact Assessment: Cyber EO Year One, a new study from MeriTalk, a public-private partnership focused on improving the outcomes of government information technology (IT). The report explores perspectives on progress against Cyber EO goals, identifies what successful agencies do differently, and finds the fault lines where agency cyber leaders say they need more help to succeed. Most Federal cyber decision-makers (78 percent) agree the steps outlined in the Cyber EO are necessary to protect our nation. Implementing software supply chain security and migrating to a zero-trust architecture are the two most important factors for national cybersecurity, the research highlights. And, while just 15 percent have seen tangible improvements because of EO efforts to date, a significant portion expects to see an impact within the next year. Federal cyber leaders confirm initial progress in areas including vulnerability detection, software supply chain security, vulnerability response, and investigative and remediation capabilities. Just over half confirm IT management and staff are placing increased priority on cybersecurity, and just over half are collecting more cyber data than in the past. But, across the board, progress against EO goals is still in the early stages. Fewer than half rate their agencies’ progress against key EO goals as “excellent.” For example, 36 percent rate progress toward creating a formal strategy as excellent; 34 percent rate progress toward investing in endpoint detection and response (EDR) as excellent; and, 33 percent rate progress migrating to secure cloud solutions, as excellent. When asked about the importance of zero trust, 82 percent agree that allocating staff and budget resources to zero trust is vital to national security and almost all, 96 percent, agree the Federal zero trust strategy is somewhat or very helpful. Despite the high priority, just 30 percent of Federal cyber decision-makers rate their zero trust progress as “excellent” and many, 67 percent, say the EO’s three-year window for implementing a zero trust architecture is not realistic. Zero Trust is the gold standard for cybersecurity, so we're encouraged to see the EO is prioritizing that approach. In addition, cloud-native endpoint detection and response capabilities can significantly strengthen the cybersecurity posture for the federal government, especially when integrated with other security capabilities including identity security, threat intelligence, and managed threat hunting. These concepts have become cybersecurity best practices for the private sector’s most technologically advanced businesses, and we encourage the public sector to continue to embrace these technologies and strategies.” Drew Bagley, vice president and counsel for Privacy and Cyber Policy, CrowdStrike “Getting to zero trust is not easy. The detail provided in the multi-step guidance from OMB provides a path, but there is no single box you can buy to meet the varied needs of the five zero trust pillars,” says Stephen Kovac, Chief Compliance Officer and Head of Global Government Affairs, Zscaler. “You need multiple solutions from varying vendors that work together with seamless integration to achieve true zero trust – it is a team sport. OMB has done a good job in helping to define those rules, with rule one being to keep users off the network. If they can’t reach you, they can’t breach you.” Funding is another roadblock. Just 14 percent report they have all funding needed to meet Cyber EO requirements. One-third say they have half, or less than half, of the funding needed. “The sea change is the focus on comprehensive cyber resiliency,” says Nicole Burdette, principal, MeriTalk. “The EO provided direction, and Federal cyber leaders are now doing the hard work. But progress requires sustained funding and resource commitment. The research shows the gaps.” “The U.S. federal government is taking important steps to improve the nation’s cybersecurity posture,” said Dave Levy, Vice President of U.S. Government, Nonprofit, and Healthcare at Amazon Web Services (AWS). “In the Cyber EO, the White House directs federal agencies to adopt security best practices, implement zero trust architectures, and accelerate migration to secure cloud services. Organizations of all sizes should consider similar principles and practices to enhance their cybersecurity and protect employees and sensitive data against cyberattack.” What are the leaders doing differently? Cyber EO champions (leaders who give their agency’s EO progress an A) are predictably more likely than their peers to say they have all the funding they need. They are also more likely to have their chief information officer (CIO) leading their zero-trust implementation (67 percent to 28 percent). When asked for perspectives on what’s needed to achieve cyber progress, the research identified the Federal wish list: Workforce training and expertise Stronger executive buy-in Detailed direction from agency IT leadership Centers of Excellence (COEs) in the government to lend expertise Three-fourths of Federal cyber decision-makers also say the EO should have been more authoritative with private-sector directives. The Impact Assessment: Cyber EO Year One report is based on an online survey of more than 150 Federal cybersecurity decision-makers familiar with their agencies’ cybersecurity initiatives, including zero trust strategies, in March 2022 and is underwritten by Amazon Web Services (AWS), CrowdStrike, and Zscaler. The report has a margin of error of ±7.7 percent at a 95 percent confidence level. About MeriTalk The voice of tomorrow’s government today, MeriTalk is a public-private partnership focused on improving the outcomes of government IT. Our award-winning editorial team and world-class events and research staff produces unmatched news, analysis, and insight. The goal: a more efficient, responsive, and citizen-centric government. MeriTalk connects with an audience of 160,000 Federal community contacts.

Read More

Events