Kibata

Sign In

Our Services

Get 15% Discount on your First Order

Order Now
[rank_math_breadcrumb]

D 3 of 360

Follow the attach instructions to complete this work.

How does FedRAMP help agencies ensure that Digital Government services are secure?

 

Must post first.

Subscribe

The format for your week 3 discussion is a backgrounder (“briefing paper”). Background papers are summaries of issues provided to help decision-makers/leaders/managers make decisions. Decision-makers use summaries instead of (or in addition to) reading lengthy reports because the summaries only include the 
pertinent facts and/or the bottom line – meaning each specific point stands alone in the context of the paper topic.

Prepare a set of discussion points (3 to 5 paragraphs) that address the following information request:

How does FedRAMP help agencies ensure the security of digital government services?

Your backgrounder (“briefing paper”) must address the following:

· What is meant by “Digital Government services?” (previously called “e-Government” services)

· FedRAMP (what it is, how agencies use FedRAMP to deliver Digital Services, and how FedRAMP contributes to improved security for Digital Services)

· Additional strategies for improving privacy and security (Play #11) from the Federal CIO Council’s 
Digital Services Playbook (“Manage security and privacy through reusable processes”) — make sure that you address the “Checklist” and “Key Questions”

Provide in-text citations and references for 3 or more authoritative sources. Put the reference list at the end of your posting.

Read these

Notes

Securing Digital Government Programs & Services

Topic: Securing Digital Government Programs & Services

This week, we begin by considering the federal government’s strategies (see Digital Services Playbook (Federal CIO Council) in the course content) for digital government:

1. Understand what people need

2. Address the whole experience, from start to finish

3. Make it simple and intuitive

4. Build the service using agile and iterative practices

5. Structure budgets and contracts to support delivery

6. Assign one leader and hold that person accountable

7. Bring in experienced teams

8. Choose a modern technology stack

9. Deploy in a flexible hosting environment

10. Automate testing and deployments

11. Manage security and privacy through reusable processes

12. Use data to drive decisions

13. Default to open [data]

These 
digital government strategies depend upon the security of the federal IT systems and software that agencies will use to implement their provisions. The President and his cabinet (heads of federal departments and agencies) are responsible for setting policy to implement laws that authorize and require the activities necessary to ensure the security of these systems and services. (In Week 1, you reviewed the May 2021 guidance from the White House — Executive Order 14028.) The National Institute of Standards and Technology (NIST) carries primary responsibility for researching and publishing information security standards and guidance for the federal government’s agencies, departments, and contractors. These publications, including the 800 series Special Publications, are widely used throughout the world by governments, businesses, and treaty organizations.

The Federal Information Security Management Act (FISMA) lays the foundational requirements for securing all federal IT systems and the implementing guidance developed and published by the National Institute of Standards and Technology, as directed in the FISMA legislation. Important implementation guidance documents include: FIPS 199, FIPS 200, NIST Cybersecurity Framework, NIST SP 800-30, NIST SP 800-37, and NIST SP 800-53. You should be aware of the contents of each of these documents.

NIST SP 800-30 (conducting risk assessments) and NIST SP-800-37 (applying the risk management framework) are summarized and discussed in the Certified Authorization Professional (CAP CBK) book used in this course. As noted in Week 1, the CAP CBK content is based upon revision 1 of NIST SP-800-37. The current version (V2) is included in this week’s readings so that you can become familiar with the current Risk Management Framework and associated guidance.

The federal government’s Digital Government strategies emphasize the use of Cloud Services and cloud services providers in preference to enterprise IT data centers operated by individual departments and agencies. The Federal Government’s FedRAMP program provides guidance to departments and agencies for the acquisition and operation of cloud services. This guidance works in concert with the NIST guidance for securing government information systems and services. The readings this week provide an introduction to this important cross-agency program.

Share This Post

Email
WhatsApp
Facebook
Twitter
LinkedIn
Pinterest
Reddit

Order a Similar Paper and get 15% Discount on your First Order

Order Now

Related Questions

Blockchain app programming

i have the template provided and you will have to use the term project presentation to complete it.  Secure-Trade CIS-5730 – Blockchain Applications TERM PROJECT PRESENTATION The money is stored in a digital wallet in the blockchain until two parties pass release or refund (Safe, 2026). The same agreement promotes

HIMS 655 ASS8

Watch the YouTube Video MEDICAL CODING ICD-10-CM GUIDELINES LESSON – 1.B – Coder explanation and examples for 2021 Review the ICD-10-CM Official Guidelines for Coding and Reporting at   and in your assignment respond to the following questions: Who is responsible for framing these Guidelines? Why are these guidelines necessary for

HIMS 645 ASS8

Using Internet resources, search  three national and three international healthcare organizations that maintain databases and use the information based on the processed data from these databases in their decision-making process. Briefly describe the organizations and types of data contained in their databases (make sure to remember quality of data points and

W8: Topic 1 – Course Wrap-Up

 Pick one topic from this class that most interested you. State the topic and your reasons for the choice. ii. You need to respond to at least 2 students.  This is part of your grade to be active in the threads and responding to students.   NB: THIS IS THE TOPIC

Big Data Tools and Emerging Technologies

please see attachment  4 [ Note: To complete this template, replace the bracketed text with your own content. Remove this note before you submit your project.] Big Data Tools and Emerging Technologies Paper [Your Name] DAT 260: Emerging Technologies and Big Data [Your Instructor’s Name] [Date—for example, May 1, 2021]

HIMS 655 ASS7

Mapping between SNOMED-CT and ICD-10-CM Note: For completing this assignment, use of the I-MAGIC tool (Interactive Map-Assisted Generation of ICD Codes) is required. To access the I-MAGIC tool, click on the following  ) Problems and diagnoses can be recorded in SNOMED CT in the EHR, while the cross-mappings to ICD-10-CM can

HIMS 645 ASS7

Four types of databases are Relational, Network, Hierarchical, and Object-Oriented. What are their salient features (a table format is acceptable)? Assess their usability for healthcare facilities that generated numerical, text, and images data citing reasons for your choice.  Two most commonly used databases in healthcare organizations are Relational and Object-Oriented (O-O). Both employ respective

MS ACCESS

Need to do a Microsoft Access document for my work.  2 Consideration of MS Access Database Development on Healthcare. Name Instructor School Date Consideration of MS Access Database Development on Healthcare. Introduction The task entailed developing a Microsoft access database of a small healthcare facility, which has just abandoned the

Effective security programs

Organizational policies define the direction for an organization and contribute to its overall security culture by setting the tone on what is and is not acceptable. 

The Equifax Data Breach

Briefly explain what the Equifax data breach was, why it happened, and why it was important. You should mention that Equifax failed to protect personal data, discuss the ethical and security issues involved, and explain what companies can learn from the incident. Please see attached documents. 

Reflection on Big Data and AI

please see attached DAT 260 Module Five Journal Guidelines and Rubric Overview In this journal assignment, you will reflect on key concepts covered in this module. This assignment directly supports your work in Project Two, which is due in Module Seven. Directions In a well-crafted journal entry, address the following: