Kibata

Sign In

Our Services

Get 15% Discount on your First Order

Order Now
[rank_math_breadcrumb]

D 3 of 360

Follow the attach instructions to complete this work.

How does FedRAMP help agencies ensure that Digital Government services are secure?

 

Must post first.

Subscribe

The format for your week 3 discussion is a backgrounder (“briefing paper”). Background papers are summaries of issues provided to help decision-makers/leaders/managers make decisions. Decision-makers use summaries instead of (or in addition to) reading lengthy reports because the summaries only include the 
pertinent facts and/or the bottom line – meaning each specific point stands alone in the context of the paper topic.

Prepare a set of discussion points (3 to 5 paragraphs) that address the following information request:

How does FedRAMP help agencies ensure the security of digital government services?

Your backgrounder (“briefing paper”) must address the following:

· What is meant by “Digital Government services?” (previously called “e-Government” services)

· FedRAMP (what it is, how agencies use FedRAMP to deliver Digital Services, and how FedRAMP contributes to improved security for Digital Services)

· Additional strategies for improving privacy and security (Play #11) from the Federal CIO Council’s 
Digital Services Playbook (“Manage security and privacy through reusable processes”) — make sure that you address the “Checklist” and “Key Questions”

Provide in-text citations and references for 3 or more authoritative sources. Put the reference list at the end of your posting.

Read these

Notes

Securing Digital Government Programs & Services

Topic: Securing Digital Government Programs & Services

This week, we begin by considering the federal government’s strategies (see Digital Services Playbook (Federal CIO Council) in the course content) for digital government:

1. Understand what people need

2. Address the whole experience, from start to finish

3. Make it simple and intuitive

4. Build the service using agile and iterative practices

5. Structure budgets and contracts to support delivery

6. Assign one leader and hold that person accountable

7. Bring in experienced teams

8. Choose a modern technology stack

9. Deploy in a flexible hosting environment

10. Automate testing and deployments

11. Manage security and privacy through reusable processes

12. Use data to drive decisions

13. Default to open [data]

These 
digital government strategies depend upon the security of the federal IT systems and software that agencies will use to implement their provisions. The President and his cabinet (heads of federal departments and agencies) are responsible for setting policy to implement laws that authorize and require the activities necessary to ensure the security of these systems and services. (In Week 1, you reviewed the May 2021 guidance from the White House — Executive Order 14028.) The National Institute of Standards and Technology (NIST) carries primary responsibility for researching and publishing information security standards and guidance for the federal government’s agencies, departments, and contractors. These publications, including the 800 series Special Publications, are widely used throughout the world by governments, businesses, and treaty organizations.

The Federal Information Security Management Act (FISMA) lays the foundational requirements for securing all federal IT systems and the implementing guidance developed and published by the National Institute of Standards and Technology, as directed in the FISMA legislation. Important implementation guidance documents include: FIPS 199, FIPS 200, NIST Cybersecurity Framework, NIST SP 800-30, NIST SP 800-37, and NIST SP 800-53. You should be aware of the contents of each of these documents.

NIST SP 800-30 (conducting risk assessments) and NIST SP-800-37 (applying the risk management framework) are summarized and discussed in the Certified Authorization Professional (CAP CBK) book used in this course. As noted in Week 1, the CAP CBK content is based upon revision 1 of NIST SP-800-37. The current version (V2) is included in this week’s readings so that you can become familiar with the current Risk Management Framework and associated guidance.

The federal government’s Digital Government strategies emphasize the use of Cloud Services and cloud services providers in preference to enterprise IT data centers operated by individual departments and agencies. The Federal Government’s FedRAMP program provides guidance to departments and agencies for the acquisition and operation of cloud services. This guidance works in concert with the NIST guidance for securing government information systems and services. The readings this week provide an introduction to this important cross-agency program.

Share This Post

Email
WhatsApp
Facebook
Twitter
LinkedIn
Pinterest
Reddit

Order a Similar Paper and get 15% Discount on your First Order

Order Now

Related Questions

PhD thesis

I need a comprehensive PhD thesis developed on the topic of “Emotion-Aware Artificial Intelligence and Sustainable Consumer Behavior: A Neuro-AI Marketing Framework for Continuous Green Consumption.”

Co project

· Comprehensive Literature Review: Require a more comprehensive survey of existing approaches. · Comparative Study: Expect more detailed benchmarking of at least 8 to 10 machine learning models. · Additional Experiments: · Conduct feature selection or dimensionality reduction as an extra step. · Explore ensemble methods or advanced techniques beyond

AI

Did AI take place the Software Engineers, HR consultants and Data Entry Jobs?

Data visualization 4 part 2

Follow the attached instructions to complete this work. Unit 4 Assignment Directions: Time Series In this assignment, you will perform a time series analysis in Tableau. · Choose a dataset to analyze based on the requirements provided.   · Once you’ve selected your time series, build a forecast to predict future

Computer Science CG Assignment 8 presentation

Follow the attach instruction to complete this work. Note: Make sure it aligns with Rubric Unit 8 Assignment 2 Directions: Final Presentation Purpose With this presentation, you will gain valuable experience demonstrating your expertise in cybersecurity governance by presenting as a CISO to a hypothetical professional audience.  Directions Begin by incorporating

Computer Science CG assignment 8

Follow the attached assignment to complete the work. Note: Follow Rubric Unit 8 Assignment 1 Directions: Presentation Rehearsal Purpose The rehearsal is your first run-through of your talk. Use the opportunity to de-bug any technical issues with lighting, positioning, and recording. You will not be graded on technical or artistic

Computer Science CG assignment 7 Outline

 Follow the attached document to complete this work Unit 7 Assignment 1 Directions: Professional Presentation Outline Purpose This assignment allows you time to review your research from previous units and organize your thoughts in an outline format. Plan on changing your paper and presentation based on feedback on this outline.  Directions

Computer Science CG assignment 6 ,

Follow the attached direction to complete this work. Note: Make sure it Aligns with Rubric Unit 6 Assignment 2 Directions: Timothy Brown vs. the SEC Purpose The Securities and Exchanges Commission (SEC) is a key US federal agency that regulates financial reporting. In this paper, you will explore how the

Microsoft 365Tenant to Tenant Migration Solution

A smooth tenant-to-tenant migration requires more than just moving mailboxes—it demands precision, security, and planning. With the MailsDaddy Cross-Tenant Migration Service, IT teams can execute a flawless cross-tenant mailbox migration that covers emails, attachments, calendars, contacts, and OneDrive data. It’s built for businesses of every size, ensuring the entire Office

CO Data 3

DECISION TREES for Risk Assessment One of the great advantages of decision trees is their  interpretability. The rules learnt for classification are easy for a person to follow, unlike the opaque “black box” of many other methods, such as neural networks. We demonstrate the utility of this using a  German

Computer Science Homework 1

MMIS 671 Homework 1. Constrained Optimization Problems A company produces 3 types of cables: A, B, and C. In-house production costs per foot of cables A, B, and C are $6, $8, and $10, respectively. The production process requires 5 resources: Drawing, Annealing, Stranding, Extrusion, and Assembly. For each resource,

MIMT

  Task 2.4 — Executing the Payload After decrypting and executing the transferred file, it generates a unique hash tied to your GTID. What’s the hash?

data Discussion 3

Follow the attached instructions to complete this. use the   CRM Sale Dashboard. Unit 3 Discussion: Deconstruction of an Advanced Dashboard: Trends and Improvements   Discussion Prompts · Does the dashboard designer use any of the trends that are described in Milligan’s Chapter 9? · If they did use those

Assign 4 of CG

Follow the attach instructions to complete this work. Make sure it alligns with rubric. Guidance to follow I encourage you to build your project format following the requirements established in each project’s final step. I am going to give you the key to success. I am a fan of headings/subheadings