secure cloud fast development

DIG IT AWARD FINALIST: CYBERSECURITY

IC collaboration, secure and at speed


Cybersecurity Finalists

APE: Novel Intrusion Prevention for Android
Department of Homeland Security

Baseline Tailor
National Institute of Standards and Technology, Department of Commerce

Continuous Diagnostics and Mitigation Program
DHS

Derived PIV Credentials for Mobile Devices
Federal Emergency Management Agency, DHS

Security Accreditation in the C2S Isolated Cloud Region
Intelligence Community

 

Click here for the full list of 2017 Dig IT finalists for all categories. And please join us at the Oct. 19 Dig IT Awards gala.

When CIA officials decided in 2013 to work with Amazon Web Services to create a dedicated cloud environment for the intelligence community, there were lots of questions, and many of them centered on security.

“Neither side knew how it was going to turn out,” CIA CIO John Edwards said of the partnership in a recent speech. Yet four years later, it has proven to be “the best decision we’ve ever made” and arguably “the most secure thing out there” — not least because it’s a cloud completely decoupled from the public internet.

One of the biggest benefits has been the speed with which intelligence agencies can innovate in the Commercial Cloud Services, or C2S, environment. However, ensuring that those innovations are themselves compliant and secure has posed new challenges. So the CIA turned to Telos, the creator of Xacta 360, to protect C2S and all its data.

The Xacta 360 automated risk management and security compliance software scans the cloud environment for vulnerabilities and threats based on intelligence community standards, overlays, controls and audits. With the compliance automation and continuous monitoring, C2S is now able to provision and authorize in minutes or hours what previously required weeks or even months.

That speedy security and the agile collaboration it enables have been a “game changer for the community,” Edwards said.

About the Author

Laura Williams is content development editor for Security Products magazine, an 1105 Media publication.

inside gcn

  • cybersecure new york city

    NYC looks to improve cybersecurity, broadband

Reader Comments

Please post your comments here. Comments are moderated, so they may not appear immediately after submitting. We will not post comments that we consider abusive or off-topic.

Please type the letters/numbers you see above

More from 1105 Public Sector Media Group