How FedRAMP Compliance Can Give You a Competitive Edge

Written by
FedRAMP

This post was originally published on Cloud Computing Journal. When describing cloud computing, terms like highly scalable, efficient, and on-demand probably come to mind. Unfortunately, those same descriptors aren’t commonly associated with operations in the federal government. In 2010, the White House’s Office of Management and Budget set out to change that with the Cloud First Policy. Through cloud computing, the OMB aimed to help federal agencies consolidate and provide new services cheaper and faster. But with cloud adoption comes the heightened challenge of ensuring a secure and trustworthy environment. That’s where FedRAMP comes in. FedRAMP defines the requirements for cloud service providers’ security controls, including vulnerability scanning, incident monitoring, logging, and reporting. CSPs in use at federal agencies or…

Tags: ,
Categorized in:

5 tips to implement Agile Compliance

Written by
Agile Compliance

Agile companies do things faster.  You must be agile yourself, and that means running your compliance effort in an agile way. About ten years ago, the software development industry moved towards rapid iteration, quick improvements, and moving faster.  Agile Development has become ubiquitous, particularly in startups. Over the last few years, these agile concepts moved from software development to startup business processes in the “Lean Startup” model: all about quick wins, ruthless prioritization, external focus, and continuous improvement. Fast growing billion dollar startups fear that they won’t be able to stay agile, and large companies need to become more agile to compete with them.  Much of that fear comes from their perspective that things like compliance will slow them down. But this doesn’t have…

Tags: , ,
Categorized in:

Welcome to the Zen of GRC

Written by
Tree

Welcome to the Zen of GRC – a new voice in the world of governance, risk management, audits, and compliance. For many companies, the challenges of compliance can be at odds with innovation. They spend valuable time and resources struggling with a compliance burden that is growing in both complexity and size. Yesterday’s approach of disjointed spreadsheets, emails, documents, and manual processes stifles innovation rather than supporting it. But when companies are growing from zero to billions in no time flat, it’s all the more important that they govern their compliance requirements effectively in order to scale properly. Every company, from the smallest startup to a giant corporation, must find an agile way to deal with their compliance needs. That is…

Tags:
Categorized in: