Even if you aren’t selling to a government agency, it’s important to understand government regulations. The government is the largest single creator, collector, consumer and circulator of information in the country. If its policies change, there’s a good chance those changes will trickle down to the commercial sector. Add to that the alphabet soup of acronyms that come with it, FISMA, FedRAMP, NIST, FIPS, etc.
Originally published on www.meritalk.com The Federal government is the leading creator, collector, consumer, and communicator of information in the United States. If there are changes to its regulatory requirements, it is entirely possible those changes will eventually spread into the commercial sector. Such is the case with two related risk management programs developed by the Federal government that now enforce commercial organizations working contractually with the Federal government to employ Federal security standards.
Originally published on www.fedrampfastforward.com BrightLine works with many cloud service providers (CSPs) which have built successful business by providing services to the private sector. With the growth, not to mention CloudFirst mandate, many of these CSPs are taking a much closer look at the potential to work with the Federal government. Today, part of the price of entry is compliance with the Federal Risk and Authorization Management Program (FedRAMP).
via MarketWired Review the updates to SOC, ISO, PCI, and FedRAMP standards August 21, 2014 – (Tampa, FL) – Schellman & Company, Inc., a leading provider of compliance and attestation reporting services, is pleased to announce that it will be hosting a complimentary webinar titled “2014 Compliance Standards Update,” on August 22 from 12:00pm EST to 1:00pm EST. Doug Barbin, Schellman Principal, will offer the participants an overview of the how 2013 brought these major changes and the initial release and request for comment on additional standards, however 2014 is the year where new versions become mandatory.
I was delighted to be invited to speak on security and compliance during the Colocation Tutorial at Data Center World last week in Las Vegas, Nevada. The tutorial was an all-day session for enterprise data center operations executives - mostly data center operators from large corporations that currently outsource to a colocation facility. I had the privilege of joining a panel comprising of executives from RagingWire, Equinix, Schneider Electric, Dominion Virginia Power, Transitional Data Center Services, and Neustar.
I am delighted that Schellman is now an accredited FedRAMP 3rd Party Assessment Organization (3PAO). This is a testament to our extensive experience in the cloud service provider (CSP) space and the qualifications and experience of a licensed CPA firm, PCI QSA company, and ISO 27001 certification body.