Tuesday, July 1, 2025

Security Boulevard Logo

Security Boulevard

The Home of the Security Bloggers Network

Community Chats Webinars Library
  • Home
    • Cybersecurity News
    • Features
    • Industry Spotlight
    • News Releases
  • Security Creators Network
    • Latest Posts
    • Syndicate Your Blog
    • Write for Security Boulevard
  • Webinars
    • Upcoming Webinars
    • Calendar View
    • On-Demand Webinars
  • Events
    • Upcoming Events
    • On-Demand Events
  • Sponsored Content
  • Chat
    • Security Boulevard Chat
    • Marketing InSecurity Podcast
    • Techstrong.tv Podcast
    • TechstrongTV - Twitch
  • Library
  • Related Sites
    • Techstrong Group
    • Cloud Native Now
    • DevOps.com
    • Security Boulevard
    • Techstrong Research
    • Techstrong TV
    • Techstrong.tv Podcast
    • Techstrong.tv - Twitch
    • Devops Chat
    • DevOps Dozen
    • DevOps TV
  • Media Kit
  • About
  • Sponsor

  • Analytics
  • AppSec
  • CISO
  • Cloud
  • DevOps
  • GRC
  • Identity
  • Incident Response
  • IoT / ICS
  • Threats / Breaches
  • More
    • Blockchain / Digital Currencies
    • Careers
    • Cyberlaw
    • Mobile
    • Social Engineering
  • Humor
Cloud Security Security Bloggers Network 

Home » Cybersecurity » Cloud Security » The U.S. Government Is Getting Smarter on Cloud

SBN

The U.S. Government Is Getting Smarter on Cloud

by Rod Musser on October 15, 2018

Since 2010, the U.S. Executive Office has been encouraging agencies to leverage the cloud to improve citizen services.

Now, according to the new “Cloud Smart” strategy, a group of federal agencies are taking the lead to identify the best way to make that happen. Relying on input from industry and the broader federal IT community, OMB, DHS, GSA and others are putting together “a work plan of actions and targeted policy updates” to advance the strategy over the next 18 months.

Techstrong Gang Youtube
AWS Hub

After digesting the strategy’s initial overview, I was impressed. The government appears to have a good grasp on the shortcomings of the prior “Cloud First” initiative, and in the new Cloud Smart strategy, it has identified security as one of the top three key areas requiring “serious consideration and investment…”

Several recommendations made in the document resemble best practices used by some of the more adept commercial cloud adopters and are worth noting:

  • The plan acknowledges that moving from on-premise to the cloud does not necessarily take advantage of cloud capabilities and emphasizes that agency adopters must have the right REASONS for moving to the cloud.
  • To achieve the government’s desired outcomes, agency adopters must take advantage of the auto-scaling and auto-provisioning capabilities that the cloud offers.
  • The government recognizes that DHS’s CDM program “must continue to evolve” and emphasizes that monitoring tools and capabilities are needed to understand cyber risks in the cloud.

Of the three key areas of focus (security, procurement and workforce), I believe that security will pose the greatest challenge to the federal government.

When it comes to tacking the security challenges, the government should consider addressing the following in the final draft of its Cloud Smart strategy:

  • Can an agency’s security product handle things that are auto-provisioned and auto-scaled? This is an important (Read more...)

*** This is a Security Bloggers Network syndicated blog from The State of Security authored by Rod Musser. Read the original post at: https://www.tripwire.com/state-of-security/government/the-us-government-is-getting-smarter-on-cloud/

October 15, 2018October 15, 2018 Rod Musser Cloud, Federal, government, SCM
  • ← Scottish Ambulance Service Exposed Employees’ Data Online
  • Bitglass Security Spotlight: Uber, Apollo, & Chegg →

Techstrong TV

Click full-screen to enable volume control
Watch latest episodes and shows

Tech Field Day Events

Upcoming Webinars

Securing Vibe Coding: Addressing the Security Challenges of AI-Generated Code
How to Spot and Stop Security Risks From Unmanaged AI Tools

Podcast

Listen to all of our podcasts

Press Releases

GoPlus's Latest Report Highlights How Blockchain Communities Are Leveraging Critical API Security Data To Mitigate Web3 Threats

GoPlus’s Latest Report Highlights How Blockchain Communities Are Leveraging Critical API Security Data To Mitigate Web3 Threats

C2A Security’s EVSec Risk Management and Automation Platform Gains Traction in Automotive Industry as Companies Seek to Efficiently Meet Regulatory Requirements

C2A Security’s EVSec Risk Management and Automation Platform Gains Traction in Automotive Industry as Companies Seek to Efficiently Meet Regulatory Requirements

Zama Raises $73M in Series A Lead by Multicoin Capital and Protocol Labs to Commercialize Fully Homomorphic Encryption

Zama Raises $73M in Series A Lead by Multicoin Capital and Protocol Labs to Commercialize Fully Homomorphic Encryption

RSM US Deploys Stellar Cyber Open XDR Platform to Secure Clients

RSM US Deploys Stellar Cyber Open XDR Platform to Secure Clients

ThreatHunter.ai Halts Hundreds of Attacks in the past 48 hours: Combating Ransomware and Nation-State Cyber Threats Head-On

ThreatHunter.ai Halts Hundreds of Attacks in the past 48 hours: Combating Ransomware and Nation-State Cyber Threats Head-On

Subscribe to our Newsletters

ThreatLocker

Most Read on the Boulevard

N. Korean Group BlueNoroff Uses Deepfake Zoom Calls in Crypto Scams
‘IntelBroker’ Hacker Arrested for Wave of High-Profile Data Breaches
Abstract Security Adds Data Lake to Reduce Storage Costs
NIST’s CURBy Uses Quantum to Verify Randomness of Numbers
ICE’s Shiny New ‘AI’ Facial Recognition App: False Positives Ahoy!
Cybersecurity Snapshot: U.S. Gov’t Urges Adoption of Memory-Safe Languages and Warns About Iran Cyber Threat
AI vs. AI: How Deepfake Attacks Are Changing Authentication Forever
The Hacktivist Cyber Attacks in the Iran-Israel Conflict
Best SAST Solutions: How to Choose Between the Top 11 Tools in 2025
Best Application Security Testing Tools: Top 10 Tools in 2025

Industry Spotlight

ICE’s Shiny New ‘AI’ Facial Recognition App: False Positives Ahoy!
Analytics & Intelligence Cyberlaw Cybersecurity Data Privacy Featured Governance, Risk & Compliance Humor Identity & Access Industry Spotlight Mobile Security Most Read This Week Network Security News Popular Post Security Awareness Security Boulevard (Original) Social - Facebook Social - LinkedIn Social - X Spotlight Threat Intelligence Threats & Breaches 

ICE’s Shiny New ‘AI’ Facial Recognition App: False Positives Ahoy!

June 30, 2025 Richi Jennings | Yesterday 0
Russian Throttling of Cloudflare ‘Renders Many Websites Barely Usable’
Cloud Security Cybersecurity Data Security Featured Industry Spotlight Mobile Security Network Security News Security Boulevard (Original) Social - Facebook Social - LinkedIn Social - X Social Engineering Spotlight 

Russian Throttling of Cloudflare ‘Renders Many Websites Barely Usable’

June 30, 2025 Jeffrey Burt | Yesterday 0
WhatsApp BANNED by House Security Goons — But Why?
Application Security Cloud Security Cyberlaw Cybersecurity Data Privacy Data Security DevOps Endpoint Featured Governance, Risk & Compliance Humor Incident Response Industry Spotlight Mobile Security Most Read This Week Network Security News Popular Post Security Awareness Security Boulevard (Original) Social - Facebook Social - LinkedIn Social - X Spotlight Threats & Breaches Vulnerabilities 

WhatsApp BANNED by House Security Goons — But Why?

June 24, 2025 Richi Jennings | Jun 24 0

Top Stories

Sysdig Extends AI Agent Reach Across Portfolio
Cybersecurity Featured News Security Boulevard (Original) Social - Facebook Social - LinkedIn Social - X Spotlight Threats & Breaches Vulnerabilities 

Sysdig Extends AI Agent Reach Across Portfolio

June 30, 2025 Michael Vizard | Yesterday 0
NIST’s CURBy Uses Quantum to Verify Randomness of Numbers
Cloud Security Cybersecurity Data Privacy Data Security Featured Identity & Access Mobile Security Network Security News Security Awareness Security Boulevard (Original) Social - Facebook Social - LinkedIn Social - X Spotlight Threat Intelligence Threats & Breaches 

NIST’s CURBy Uses Quantum to Verify Randomness of Numbers

June 29, 2025 Jeffrey Burt | 1 day ago 0
‘IntelBroker’ Hacker Arrested for Wave of High-Profile Data Breaches
Cloud Security Cybersecurity Data Privacy Data Security Featured Identity & Access Mobile Security Network Security News Security Boulevard (Original) Social - Facebook Social - LinkedIn Social - X Spotlight Threat Intelligence Threats & Breaches 

‘IntelBroker’ Hacker Arrested for Wave of High-Profile Data Breaches

June 28, 2025 Jeffrey Burt | 2 days ago 0

Security Humor

The face of the Statue Of Liberty

ICE’s Shiny New ‘AI’ Facial Recognition App: False Positives Ahoy!

Download Free eBook

7 Must-Read eBooks for Security Professionals

Security Boulevard Logo White

DMCA

Join the Community

  • Add your blog to Security Creators Network
  • Write for Security Boulevard
  • Bloggers Meetup and Awards
  • Ask a Question
  • Email: [email protected]

Useful Links

  • About
  • Media Kit
  • Sponsor Info
  • Copyright
  • TOS
  • DMCA Compliance Statement
  • Privacy Policy

Related Sites

  • Techstrong Group
  • Cloud Native Now
  • DevOps.com
  • Digital CxO
  • Techstrong Research
  • Techstrong TV
  • Techstrong.tv Podcast
  • DevOps Chat
  • DevOps Dozen
  • DevOps TV
Powered by Techstrong Group
Copyright © 2025 Techstrong Group Inc. All rights reserved.
×