Federal agencies preparing for CDM dashboard need strategy for big data and cloud security

“Agencies likely have the Continuous Diagnostics and Mitigation (CDM) program on their minds as a result of the Office of Management and Budget’s November memo requiring they share cyber risk data to a new federal dashboard. Specifically, the memo notes, agencies are required to ‘report the status of their information security programs to OMB,’ with inspectors general conducting ‘annual independent assessments of those programs.’

What should an agency’s ‘information security program’ include? With agencies’ increased emphasis on big data throughout their operations, if the program does not include a strategy for big data and cloud security, it is incomplete.

Additionally, OMB expects agencies to certify their implementation of the CDM program’s Data Quality Management Plan and be ready to exchange data with the dashboard by the end of the 2021 fiscal year. Agencies will start that data exchange off on better footing when their information security program thoroughly considers the security of big data and the cloud. After all, it’s easier to measure security risks once the fundamental elements have been buttoned down…”

“Security risks related to big data have grown an order of magnitude over the last few years because the technology has become more common in agencies’ daily operations. The Cloud Security Alliance estimates that data volume is doubling every two years, and with that growth comes more cybersecurity risk…”

“Understanding an agency’s risk criteria, in compliance with OMB guidance, means federal IT professionals at all levels (but especially CIOs) must make sure their agencies’ security strategies are aligned with cloud-based technologies…” Read the full article here.

Source: Preparing for the CDM dashboard: Big data and the cloud – By Brent Hansen, February 22, 2021. GCN.

0
Tags:

This topic contains 0 replies, has 1 voice, and was last updated by  Jackie Gilbert 1 week, 2 days ago.

  • Author
    Posts
  • #119956

    Replies viewable by members only

    0

You must be logged in to reply to this topic.

CONTACT US

Questions?. Send us an email and we'll get back to you, asap.

Sending

©2021 G2Xchange all rights reserved | Community and Member Guidelines | Privacy Policy | About G2Xchange FedCiv

Opportunities. Starting Points.

About our Data

The Vault is a listing of expiring contracts, task orders, etc. within a certain set of parameters, to include:

  • Have an initial total estimated contract value of $10 million or above
  • Federal Civilian Only – DHS, Transportation, Justice, Labor, Interior, Commerce, Energy, State, and Treasury Actions
  • NAICS codes include: 511210, 518210, 519130, 519190, 541511,
    541512, 
    541513, 541519, 541611, 541618,
    541690, 541720, 541990
  • Were modified within the last 12 calendar months
  • The data represented is based on information provided by the government

Who has access? Please note that ALL G2Xchange FedCiv Members will receive access to all basic and much of the advanced data. G2Xchange FedCiv Corporate Members will receive access to ALL Vault content (basic and advanced).

Feedback/Suggestions? Contact us at Vault@G2Xchange.com and let us know what you think. 

G2Xchange FedCiv

Log in with your credentials for G2Xchange FedCiv

Forgot your details?