Whitepapers


Improving RMF Practices Through Automation

Relentless cyber attacks from adversaries have prompted federal agencies to take a more holistic and systematic approach to integrating information security into broader organizational risk management strategies. Practices defined in the Risk Management Framework (RMF) are being employed across the federal government to improve visibility, implement better controls, and support faster responses to cyber threats across IT applications and infrastructure.


OpenStack Storage for Dummies

As more applications and data are distributed across virtual machines in the cloud, a more agile and scalable solution is needed to enable ever expanding cloud services and, ultimately, the software‐defined data center supporting them. Download this guide to learn more on OpenStack and Ceph storage, including real-world use cases and configuration best practices.


The Economics of Software-Defined Storage

Data growth is a standard problem of the modern digital age. Being data driven to remain in business and increase profitability is not an option; rather, it is a necessity. In these complex times, tighter IT budgets along with the need to shift the focus on business requirements are putting added pressures on IT departments. This whitepaper examines a new era of software-defined storage solutions that allows businesses to build out a service-based storage infrastructure in an economically feasible manner.


Mobile Security: A Multi-Faceted Approach

Government agencies rely on mobile devices more than ever before. And it’s not just field operatives or inspectors. Agency staffers at all levels are being issued mobile devices. The challenge now for agencies is to ensure productivity and access to the tools they need to do their jobs; while at the same time ensuring those devices are truly secure. Security threats facing mobile devices continue to evolve, and so too must the security solutions and policies that protect those devices.


Adopt Commercial Best Practices for Travel

Despite a modest degree of automation and modernization, the steps federal government employees have to go through to make travel arrangements and then file vouchers is unnecessarily complicated and time-consuming. By adopting best practices already in use by private enterprise, federal government agencies can streamline processes, save money, increase visibility and efficiency, and improve the user experience for both the individual and agency administration.


SEWP Keeps Pace with Tech Horizons

NASA’s Solutions for Enterprise-Wide Procurement (SEWP) contract vehicle has grown in size and currently operates with 145 contract holders, 119 of which are small businesses. Over the years, SEWP has gone from just one of a number of government-wide acquisition contracts (GWACs) to the top of the pile. It’s widely considered as one of best run IT-based contracts and has become a go-to resource for government agencies. Download this special report containing expert viewpoints from SEWP Program Manager, Joanne Woytek and experienced contract holders, as we take a deeper dive into SEWP V.


How to Evaluate DDoS Mitigation Providers: Four Critical Criteria

How can you be sure that the DDoS mitigation services provider you bring on board can deliver on the promise to stop the Internet’s largest and most sophisticated attacks? This white paper explores four critical criteria on which to evaluate DDoS mitigation providers before signing on the dotted line. Akamai has developed key questions related to each to help you evaluate a provider’s threat intelligence, experience, mitigation capabilities and capacity. Our guidance is based on Akamai’s practical experience in proven mitigation approaches for different DDoS attack scenarios, as well as on our keen insight into the minds and strategies of cybercriminals and DDoS attackers.


Cloud Encryption Gateway: Enabling Security and Compliance of Sensitive Data in Cloud Storage

Companies are increasingly reliant on cloud storage and are storing sensitive data in cloud storage, which could be vulnerable to security threats. The Vormetric Cloud Encryption Gateway is a scalable solution that provides the security to use the cloud fully without sacrificing performance.


Army ITES: Recharging the Enterprise

The manner in which the Army procures its technology to run the Army enterprise continues to evolve almost as rapidly as the technology itself. New and revised contract vehicles provide sensible, cost-effective means of equipping the Army with the latest technologies, including cybersecurity and mobile technology. As Army Chief of Staff General Mark Milley says, new and emerging technologies could “deeply change the character of war.”


NETCENTS-2: Bringing Convergence to Defense

The relatively new NETCENTS-2 contract vehicle is a true evolution of earlier iterations. It is intended to provide faster, more flexible and more comprehensive access to a variety of technology categories. The contract aims to provide agencies with network-centric IT, networking, security, voice, video and data communications solutions and services not available through other mandatory-use DoD or Air Force contract formats.


Expediting Police Response

Technology is an increasingly important weapon in law enforcement’s ongoing battle against crime. As criminal elements become more sophisticated, law enforcement agencies must endeavor to remain several steps ahead; which means increased use of things like body-worn cameras, video and data analytics, and cloud-based technologies. The most advanced agencies are planning to use or are already using these cutting edge technologies.


The Rise of Hyperconvergence

Moving to a hyperconverged infrastructure addresses many of the issues facing federal government agencies these days. It can be more cost-effective, provide greater capacity, increased flexibility, rapid scalability, and promote innovation. This report — presented by Dell, Intel® and Tracewell — details several aspects of the move to hyperconvergence; from establishing a “future-ready” architecture capable of handling massive data stores and the durability requirements of field operations to software-based and virtualized infrastructure.


Take a Positive Approach to Security

When it comes to a developing an organizational vision for security, government agencies need to address the frequent view of security as an obstacle to performance and productivity. Agency and IT leaders must weigh the trade-offs between using new technologies and services, and how related security measures would affect workflow. Dell Security believes that’s the wrong way to view security. It maintains that security "done right" can help government organizations to more readily leverage technology, helping their workers to be more productive and to safely access the information and applications they need to do their jobs.


Case Management in the Government Cloud

The Empowering the Business of Government eBook shares practical advice on how agencies can communicate more efficiently and effectively with the community.


Forbes Insights Report: How Agencies Achieve Results in the Cloud

Through interviews with over a dozen senior executives from a range of government agencies, consultancies and technology providers, Forbes Insights examines the state of cloud adoption by government and the likelihood it will soon accelerate.


Government Cybersecurity Imperative: A Microsoft Perspective

The U.S. national government has embraced the reality that cybersecurity is one of the most important challenges we face in our digital economy. Find out how Microsoft is working every day to enhance the security of our cloud and our customers.


Insider’s Guide to Police Body-Worn Video

Body-worn camera technology is a part of more informed police work. Learn valuable lessons from departments that have deployed this technology and have already seen results in The Insider’s Guide to Police Body-Worn Camera Video.


Infographic: Modern Software Development

The process of modern software development incorporates agile development practices to more quickly deliver higher quality applications. Download this useful infographic to get a step by step view of how to best navigate your organization through this process.


How to Evaluate DDoS Mitigation Providers: Four Critical Criteria

How can you be sure that the DDoS mitigation services provider you bring on board can deliver on the promise to stop the Internet’s largest and most sophisticated attacks? This white paper explores four critical criteria on which to evaluate DDoS mitigation providers before signing on the dotted line. Akamai has developed key questions related to each to help you evaluate a provider’s threat intelligence, experience, mitigation capabilities and capacity. Our guidance is based on Akamai’s practical experience in proven mitigation approaches for different DDoS attack scenarios, as well as on our keen insight into the minds and strategies of cybercriminals and DDoS attackers.


Research Report: Digital Government Strategies

Across all levels of state and federal government, agencies are embracing the shift to digital services. Many of the moving pieces continue to evolve and work together such as: the steady move to the cloud, the increase in mobile device usage, and the cultural shifts. Download this research report to access further findings from a recent survey covering the strategies for digital government.


Enterprise Insight Analysis

Whether they are part of a business or working for a government organization, today’s investigators, security specialists and intelligence analysts are facing extraordinary pressure to respond quickly to a wide range of threats — from cyber attacks, terrorist threats, criminality, and unethical and immoral activities. These attacks are especially challenging as societies are increasing their reliance on cyberspace for economic growth, societal well-being, government operations and critical infrastructure monitoring and management. Concurrent with the increase in cyberspace reliance is an increase in cyberspace vulnerability. This vulnerability is amplified by an increasing frequency and complexity of attacks and highly variable, diverse and rapidly evolving threats. As such, there is a greater burden on organizations to respond in real time.


Combatting Advanced Threat with Endpoint Security Intelligence

IBM BigFix and IBM Security QRadar solutions empower IT teams to view up-to-the-minute endpoint intelligence within the context of other vulnerability data, prioritize vulnerabilities for remediation and quickly take corrective action to help minimize risks.


IBM QRadar Security Intelligence: Evidence of Value

In this report, Ponemon Institute presents findings from in-depth interviews with enterprises who switched to IBM Security QRadar from another Security Information and Event Management (SIEM) solution. The reports summarizes their rationale for switching SIEM providers as well as metrics on the deployment and performance in managing and containing network traffic anomalies.


Forrester Total Economic Impact (TEI) Study of IBM Security Guardium

In September 2015, IBM commissioned Forrester Research consulting to conduct a Total Economic Impact (TEI) study to examine the potential return on investment (ROI) that organizations may realize by deploying IBM Security Guardium. The study uncovered that organizations achieve cost and risk reductions while increasing productivity and tactical efficiencies from implementing IBM Security Guardium. Read the study to learn more.


Bring Order to Hybrid Clouds

While many government agencies are choosing a hybrid cloud approach to realize the primary benefits of both private and public clouds, many are realizing additional benefits of opting for an open source-based hybrid cloud. A standard hybrid cloud still entails managing cloud software components from multiple vendors and ensuring all applications and data are properly integrated. When agencies take the open source-based approach, they can simplify migration to a hybrid cloud, while also realizing the agility and flexibility of open source.


Open Source Drives the Agile Cloud

More government agencies are moving data and applications to the cloud. In doing so, the first major decision is choosing the best platform for the job: public, private or hybrid. Another option has been emerging of late—the open hybrid cloud. With open hybrid cloud platforms, government agencies are finding greater efficiency, flexibility and cost savings.


Monitoring is a Security Essential

As government agencies migrate to the cloud, they are working to adhere to the Government Performance and Results Modernization Act, launched by the Office of Management and Budget in 2012 to improve federal network security. Continuous Diagnostic Monitoring (CDM) is the foundation of this security initiative. CDM aims to improve security by watching round the clock for intrusions, vulnerabilities and other potentially malicious activity.


Blending cloud-native and conventional applications

Most cloud native applications rely on conventional system integrations to deliver business value. Cloud native apps are optimized for agility and speed, but conventional apps bring the security and stability enterprises need in their infrastructures. Download this whitepaper to learn the ten lessons from early adopters for successful integration of cloud native and traditional applications.


eBook: The Right Infrastructure Strategy to Support Bimodal IT Capabilities

Chances are good that your IT organization is supporting a large number of core business applications—and they’re probably under extreme pressure to deliver innovation for the business at a moment’s whim. But to do both effectively, your IT infrastructure better boast some very specific characteristics—such as a bimodal model—but why?


Enterprise Insight Analysis for Cyber Threat Analysis

Securing your infrastructure, your customer interactions and protecting your data are critical to preserving your reputation and your bottom line. Today’s cyber threats are becoming more sophisticated, agile and capable of getting past any network security. IBM® i2® Enterprise Insight Analysis is a next generation intelligence solution that enables organizations to incorporate cyber threat analysis into their security strategy and turn their defense into a proactive offense. Download this article to learn more!


Beyond Borders: Tracing the impacts of Smarter Public Safety, Frost and Sullivan

See how law enforcement agencies are pursuing more effective public safety by taking advantage of advances in predictive analytics and collaboration technologies.


Drive Data to Decision

Data and information assist the decisions made during military defense operations. In this eBook, we look at the rapidly evolving use of advanced analytics in defense intelligence.


What is Cyber Threat Analysis?

What is Cyber Threat Analysis? Human-led analysis and computer-driven analytics equal actionable insights that protect data and neutralize cyber threats. Download this infographic to learn more!


The Awakening of Cyber Threat Analysis

Discover a new approach to a seemingly unsolvable cyber problem. A new specialty of cyber threat analysis, also referred to as cyber analysis, is an emerging discipline focusing on advanced threats. The analyst, crucial to the analysis process, will use their intuition and experience to discover hidden threats and develop patterns of threat activity over time. In order to maximize an analyst’s capability and multiply their work capacity, a mature security organization must use a data analysis tool to enrich, produce, visualize and analyze information. Read more to find out the critical tools needed to keep your organization safe.


Information Governance Considerations in the Public Sector

Discover how the challenge of managing Big Data for the government sector can be handled in today’s world. Good information governance, including traditional backup and data preservation/retention is really about retaining the right data for the right reasons. Learn more about the top ten most important IT priorities in the next 12 months for public-sector organizations.


Information and Policy Governance in Federal Agencies

Discover how policy governance can help agencies address the problem of effective content management. In order to comply with the records initiative, you can implement five key objectives: Enhance productivity by using automation and transparency. Don’t restrict the flexibility and capabilities of collaboration tools. Don’t treat all information equally. Decrease the size and cost of your information footprint. Integrate the Memorandum’s requirements. Learn how each of these strategies can contribute to the overall effectiveness of your information governance solutions.


Roadmap to a Converged Infrastructure Infographic

Get the 4 steps necessary to transition your federal agency from physical, virtual and cloud to a converged infrastructure, resulting in easier management, lowered costs and complexity, and improved security for your agency's data.


The Fight Against Fraud

Digital analytics helps level the playing field in the battle against all types of electronic fraud. Download this informative eBook to learn how to stand up against fraud before it happens to you.


Reap the Rewards of Software-Defined Storage

In a software-defined enterprise, servers and desktops are usually the first targets for virtualization. Increasingly, however, agencies are embracing SDS to give them better control, flexibility, and insight into how they use storage throughout the organization. Download this digital dialogue to learn how the General Services Administration (GSA) is beginning to use SDS technology to help change how storage is managed in the enterprise.


Optimized Sourcing in Hybrid Environments

This research paper from Saugatuck Technology discusses the multi-sourced hybrid IT environment, including how to recognize the needs that can increase costs and compromise operations, and how to optimize the environments for peak effectiveness.  


Forbes Insight: The Big Bang

This Forbes Insights analyst report explores whether cloud computing is the “silver lining” for business resilience today. It covers topics such as how the cloud is changing resilience in the expanding universe of digital data; what cloud can do for you when it comes to recovery, security and compliance; and how to design a cloud strategy to improve your resilience. Read the report to find out how IBM can help you better address today’s complex threat landscape and speed recovery from unplanned outages.


The Next Generation Data Center

This white paper explores IBM’s vision for the next-generation data center, its potential to be truly revolutionary and the prescribed pathway for getting there. Download this white paper now to learn more!


Transforming Child Welfare Service Delivery

Child welfare professionals are making life and death decisions about children and their families every day. Caseworkers are typically juggling caseloads of 20, 30 or more children and families at any given time and the agency they work for might be serving tens, if not hundreds, of thousands of individuals. Each individual in a family might be receiving multiple services with varying eligibility requirements, and any child or family might have more than one caseworker from more than one government organization. This solution brief examines the ways in which technology can enable the transformation of child welfare service delivery by supporting a multi-disciplinary approach to child welfare and by enabling prevention and remediation strategies that help protect children and facilitate permanency, while also improving resource utilization.


What Child Welfare Caseworkers Need to Go Mobile

The typical caseworker only spends about 18 percent of their time in face-to-face contact with children and families while over 12 percent of their time is spent traveling and over 33 percent of their time is spent preparing documentation. Mobility and access to mobile devices are part of our personal lives, but have not become a regular part of the caseworker’s professional career. In fact, acceptance of mobile technology by social workers has been slow compared to other industries. This white paper examines the ways in which mobile access to case management systems, data and information, assessment and referral capabilities and other tools could go a long way toward reducing child welfare caseloads and workload, and improving caseworker efficiency. It also details the specific capabilities that child welfare caseworkers need from mobility tools.


Chaos to Control: Creating a Mature File Transfer Process

Many organizations struggle with the challenge file transfer. File sizes are bigger, people are using a variety of transmission methods, and sending errors are reducing productivity while increasing costs. What steps are companies taking to transform file transfer in today’s extended enterprise? Read this ebook from Aberdeen to learn why leading organizations are moving away from the chaos of multiple methods to a single managed file transfer platform, and get best practices for developing a secure, best-in-class file transfer process of your own.


Flash Forward: Putting MFT in Perspective

File transfer used to be just a tactical issue. Most organizations typically faced relatively straightforward challenges, such as dealing with different file types, developing new transfer protocols and coming up with better encryption algorithms. But now that reliable, secure, automated managed file transfer (MFT) solutions are fundamental to most business processes, the challenges have never been greater. MFT initiatives need to keep up with the rapid growth of current technology megatrends while also meeting the ever-increasing demand for faster, more secure file transfers.


Enterprise Insight Analysis for Defense Intelligence

As national security and defense threats become more asymmetrical and complex, intelligence organizations and agencies are challenged to respond more efficiently and precisely. With shrinking budgets and limited resources, these agencies need a solution that can help them accelerate the data-to-decision process, so they can make better informed decisions and take confident, effective action. IBM® i2® Enterprise Insight Analysis is a next-generation intelligence solution designed to help do just that by applying advanced analytics at scale and with critical speed.


Enterprise Insight Analysis for Cyber Intelligence

Securing your infrastructure, your customer interactions and protecting your data are critical to preserving your reputation and your bottom line. Many cyber attacks remain undetected for up to eight months and can cost an organization an average of 11 million USD2. Organizations must evolve, replacing traditional defensive security strategies with a proactive, intelligence-driven offense to prevent and disrupt these threats. The IBM® i2® Enterprise Insight Analysis solution is a next-generation intelligence solution designed to turn overwhelming and disparate data sets into comprehensive intelligence, in near real time.


Case Study: Operation Nighthawk

Special Operations Forces (SOF) from friendly countries use joint training exercises, such as Operation Nighthawk, to improve their own capabilities and to ensure that they can work together to counter cross-border and multi-national threats. Operation Nighthawk was a 2014 multinational SOF training exercise, bringing together 1,600 personnel from military and police forces from more than 10 countries. The goal was to simulate a fast-paced deployment of SOF units to an active hotspot, and train both field operatives and support staff to plan and conduct special operations.


i2 Enterprise Insight Analysis Solution Brief

Whether they are part of a business or working for a government organization, today’s investigators, security specialists and intelligence analysts are facing extraordinary pressure to respond quickly to a wide range of threats — from cyber attacks, terrorist threats, criminality, and unethical and immoral activities. These attacks are especially challenging as societies are increasing their reliance on cyberspace for economic growth, societal well-being, government operations and critical infrastructure monitoring and management. Concurrent with the increase in cyberspace reliance is an increase in cyberspace vulnerability. This vulnerability is amplified by an increasing frequency and complexity of attacks and highly variable, diverse and rapidly evolving threats. As such, there is a greater burden on organizations to respond in real time.