Kibata

Sign In

Our Services

Get 15% Discount on your First Order

Order Now
[rank_math_breadcrumb]

D 3 of 360

Follow the attach instructions to complete this work.

How does FedRAMP help agencies ensure that Digital Government services are secure?

 

Must post first.

Subscribe

The format for your week 3 discussion is a backgrounder (“briefing paper”). Background papers are summaries of issues provided to help decision-makers/leaders/managers make decisions. Decision-makers use summaries instead of (or in addition to) reading lengthy reports because the summaries only include the 
pertinent facts and/or the bottom line – meaning each specific point stands alone in the context of the paper topic.

Prepare a set of discussion points (3 to 5 paragraphs) that address the following information request:

How does FedRAMP help agencies ensure the security of digital government services?

Your backgrounder (“briefing paper”) must address the following:

· What is meant by “Digital Government services?” (previously called “e-Government” services)

· FedRAMP (what it is, how agencies use FedRAMP to deliver Digital Services, and how FedRAMP contributes to improved security for Digital Services)

· Additional strategies for improving privacy and security (Play #11) from the Federal CIO Council’s 
Digital Services Playbook (“Manage security and privacy through reusable processes”) — make sure that you address the “Checklist” and “Key Questions”

Provide in-text citations and references for 3 or more authoritative sources. Put the reference list at the end of your posting.

Read these

Notes

Securing Digital Government Programs & Services

Topic: Securing Digital Government Programs & Services

This week, we begin by considering the federal government’s strategies (see Digital Services Playbook (Federal CIO Council) in the course content) for digital government:

1. Understand what people need

2. Address the whole experience, from start to finish

3. Make it simple and intuitive

4. Build the service using agile and iterative practices

5. Structure budgets and contracts to support delivery

6. Assign one leader and hold that person accountable

7. Bring in experienced teams

8. Choose a modern technology stack

9. Deploy in a flexible hosting environment

10. Automate testing and deployments

11. Manage security and privacy through reusable processes

12. Use data to drive decisions

13. Default to open [data]

These 
digital government strategies depend upon the security of the federal IT systems and software that agencies will use to implement their provisions. The President and his cabinet (heads of federal departments and agencies) are responsible for setting policy to implement laws that authorize and require the activities necessary to ensure the security of these systems and services. (In Week 1, you reviewed the May 2021 guidance from the White House — Executive Order 14028.) The National Institute of Standards and Technology (NIST) carries primary responsibility for researching and publishing information security standards and guidance for the federal government’s agencies, departments, and contractors. These publications, including the 800 series Special Publications, are widely used throughout the world by governments, businesses, and treaty organizations.

The Federal Information Security Management Act (FISMA) lays the foundational requirements for securing all federal IT systems and the implementing guidance developed and published by the National Institute of Standards and Technology, as directed in the FISMA legislation. Important implementation guidance documents include: FIPS 199, FIPS 200, NIST Cybersecurity Framework, NIST SP 800-30, NIST SP 800-37, and NIST SP 800-53. You should be aware of the contents of each of these documents.

NIST SP 800-30 (conducting risk assessments) and NIST SP-800-37 (applying the risk management framework) are summarized and discussed in the Certified Authorization Professional (CAP CBK) book used in this course. As noted in Week 1, the CAP CBK content is based upon revision 1 of NIST SP-800-37. The current version (V2) is included in this week’s readings so that you can become familiar with the current Risk Management Framework and associated guidance.

The federal government’s Digital Government strategies emphasize the use of Cloud Services and cloud services providers in preference to enterprise IT data centers operated by individual departments and agencies. The Federal Government’s FedRAMP program provides guidance to departments and agencies for the acquisition and operation of cloud services. This guidance works in concert with the NIST guidance for securing government information systems and services. The readings this week provide an introduction to this important cross-agency program.

Share This Post

Email
WhatsApp
Facebook
Twitter
LinkedIn
Pinterest
Reddit

Order a Similar Paper and get 15% Discount on your First Order

Order Now

Related Questions

computering part 7

The goal of this project is to integrate your various components into polished, professional products. Follow the instructions below to ensure a successful submission: Apply Feedback: Review and incorporate all feedback received from previous submissions (Parts 2-6). Enhance and Improve: Refine any of the three required items (cover letter with

Discussion and Replies

Please see attachment for instructions     Discussion   In 250 words total, answer the questions below with 4 evidence base scholarly articles. APA format. Based on the readings this week, 1. Discuss some common strategies and pitfalls you have seen with business continuity. 2. Discuss some common strategies and

sociology

The goal of this project is to integrate your various components into polished, professional products. Follow the instructions below to ensure a successful submission: Apply Feedback: Review and incorporate all feedback received from previous submissions (Parts 2-6). Enhance and Improve: Refine any of the three required items (cover letter with

Python

  Instructions Create a simple Python application (Save as w5_firstname_lastname.py) . Create a Python script that takes two parameters to do the following:- 1) List all files names, size, date created in the given folder 2) Parameter1 = Root Folder name Parameter2= File size >>> to filter file size (

Python

  Instructions:  Describe methods for securing Python code. Pick at least ONE of the methods for securing node and deep dive into what it means and how it is used to secure code.   

Discussion 8 of 459

Follow the attach instruction to complete the work. 1. What is one specific technology you found the most intriguing throughout the course? 2. If you were to be a hacker, which building block vector would you choose to attack your selected technology and why?

WK 4 Discussion and Replies

Please see attachment for instructions     Discussion   In 250 words total, answer the questions below with 4 evidence base scholarly articles. APA format. Discussion on access control and physical security. These areas found to be one or more points of weakness in audit 1. Discuss some common points of

Node.js

  Instructions Create a simple Node.js server (Save as w4_firstname_lastname.js) . Create a restful application similar to the one in lesson 4 (ReSTFul Web Services). Document the routing table, and the application you created. Submit your week 4 work in w4_firstname_lastname.txt (Please save the file as a text file and

Computer Science- Python Gurobi assignment

I need the output following these steps: Put all of these files into the same folder, Open the python file, If there is any error, check if any file is missing, It has 105 counties and 4 districts, so it will take a while to finish running. I need it

Research Project

Please follow the instructions attached below:  I have choose the topic from the list is:   PROJECT TITLE Firm RTOS – Balancing Real-Time Performance and Flexibility Please check the abstract from my file and write the research project. 

provide me java based interview question.

Core Java Interview Questions (Basic Level) 1. What is Java? Java is a high-level, object-oriented, platform-independent programming language developed by Sun Microsystems. 2. What are the features of Java?  Object-Oriented  Platform Independent (via JVM)  Secure and Robust  Multithreaded  Architecture Neutral  High Performance (via JIT

Dynamons world Mod APK

 What are the best tips for playing RPG games like Dynamons World? I recently found a great resource at that offers a lot of insights and even MOD APKs for Dynamons World, but I’d love to hear personal strategies and gameplay advice from the community too! ???????? 

459 w7

Follow the attach instructions to complete this work. Questions: 1. What is Generative AI and how is it similar/different to Traditional AI? 2. Do you believe that work created by Generative AI (e.g. ChatGPT) is comparable in quality to human created content?  What challenges and opportunities  does Generative AI pose

Computer Science WK3 Assignment

Please see attachment for instructions ISSC680 Week 3 Homework Assignment Instructions: Please provide a one-page response to the following topic utilizing supporting documentation obtained from the attach books and the Internet. APA format and reference. Topic: Differentiate between the different types of cryptographic algorithms.

Discussion and Replies

Please see attachment for instructions     Discussion   In 250 words total, answer the questions below with 4 evidence base scholarly articles. APA format. Based on this weeks readings, 1. Discuss some effective strategies for Security Awareness in your organization or 2. What you would like to see implemented