April 2017 Digital Edition

Click Here

March 2017 Digital Edition

Click Here

Feb. 2017 Digital Edition

Click Here

Nov/Dec 2016 Digital Edition

Click Here

Oct 2016 Digital Edition

Click Here

Technology Sectors

Market Sectors

Federal | Agencies | Legislative

(ISC)2 presents cybersecurity recommendations to Trump Administration

Waddell

ALEXANDRIA, VA April 19, 2017 (ISC)2® today announced a set of recommendations for the Trump Administration to consider as it approaches its 100th day in office. The recommendations were delivered to White House Chief of Staff and others on President Trump's team in order to urge prioritization of workforce development within the pending cybersecurity executive order and beyond.

During a December 2016 gathering sponsored by the (ISC)2 U.S. Government Advisory Council (USGAC), participants, including former Federal Chief Information Security Officer (CISO) Gregory Touhill and federal agency CISOs and executives, discussed transition planning from the cybersecurity workforce perspective. The following is an abridged list of areas that (ISC)2 has since identified as critical for the new administration to address. An expanded list can be viewed in today's (ISC)2 blog post.

-- Time Is of The Essence. The widespread and damaging effects of cyber threats are revealed on a daily basis. At the same time, the demand for skilled cybersecurity workers is rapidly increasing.

-- Consider the Progress Already Made. Cybersecurity is a bi-partisan issue. Critical work has been done over the last eight years to advance the cybersecurity workforce.

-- Harden the Workforce. Everyone must learn cybersecurity. We have to break the commodity focus of simply buying technology and stopping there, without focusing on training all users.

-- Incentivize Hiring and Retention. In today's world, a sense of mission doesn't always override good pay — incentives work.

-- Prioritize Investment in Acquisition, Legal and Human Resources (HR) Personnel. Acquisition, legal and HR professionals are essential players within the federal cybersecurity ecosystem.

-- Prevent Getting Lost in Translation. The government needs effective communicators who can translate technical risk to business leaders.

-- Civil Service Reform. The civil service system is broken and does not meet the government's needs.

-- Compliance Does Not Equal Security — Embrace Risk Management. In the government's quest for cyber resiliency, a risk management perspective will be essential.

-- A Standard Cyber Workforce Lexicon. Once finalized, the NICE Cybersecurity Workforce Framework should provide an excellent resource for workforce development.

"In a recent congressional hearing, (ISC)2 had the opportunity to present these recommendations in an effort to advocate for our members and the broader cybersecurity profession during the presidential transition and beyond," said Dan Waddell, (ISC)² managing director, North America Region. "Significant progress has been made over the past decade to advance the federal cyber workforce; our recommendations reflect the importance of building future cybersecurity policy — including the pending executive order — on the existing foundation."

About (ISC)²

(ISC)² is an international nonprofit membership association focused on inspiring a safe and secure cyber world. Best known for the acclaimed Certified Information Systems Security Professional (CISSP®) certification, (ISC)2 offers a portfolio of credentials that are part of a holistic, programmatic approach to security. Our membership, over 120,000 strong, is made up of certified cyber, information, software and infrastructure security professionals who are making a difference and helping to advance the industry. Our vision is supported by our commitment to educate and reach the general public through our charitable foundation – The Center for Cyber Safety and EducationTM. For more information on (ISC)², visit www.isc2.org

What does ISO 9001:2015 mean for government information and cyber security professionals?

Formula for data quality 

By John DiMaria CSSBB, HISP, MHISP, AMBCI, CERP
Guest Columnist
Today’s risk landscape
Government security risks can be diverse with the new era of threats, including cybercrime and information security, increasingly posing some of the most significant risks in this new modern reality. However, the more traditional issues of ensuring customer satisfaction and producing quality products and services haven’t gone away. In fact, the more effectively an organization responds to the rising threats of today, the more likely they are to keep stakeholders satisfied by protecting quality services or products as well as a brand’s reputation.

According to the ASQ Global State of Quality 2 Research (www.globalstateofquality.org) study of nearly 1,700 companies in 20 countries, quality process-oriented companies are three times as likely to be identified as successful and half as likely to have customer service/quality disasters.

So it is no surprise then that the world’s most popular quality management standard, ISO 9001, has recently been updated as ISO 9001:2015 and this will be especially beneficial to government entities looking to increase their security.

Today, as management system standards are updated, they are done so against Annex SL, also known as the high level structure, or HLS. This is a framework for a generic management system and the blueprint for all new and revised management system standards going forward. ISO/IEC 27001 was one of the first to lead the way in 2012, and now the world’s most widely adopted standard has followed suit. This is great news for government, particularly on the topic of risk and integration.

Risk-based thinking is a key element brought in by the HLS, so organizations can be better equipped to reduce risk while being well-placed to spot opportunities. This won’t be new to professionals already working with standards such as ISO/IEC 27001 or ISO 22301 however it is quite a shift change for ISO 9001:2015. While the concept of risk has always been implicit, the new standard ensures it is built into the whole management system and more importantly encourages a proactive action that is part of the organization’s strategic planning.

So what is ISO 9001:2015?

ISO 9001 is a global standard that sets out the requirements for a quality management system, or QMS. Certification to new ISO 9001:2015 further helps government organizations to continually monitor and manage quality across their entire organization with this new focus on risk-based thinking.

By adopting ISO 9001:2015 to embed quality management into government, organizations are required to establish a systematic approach to risk, rather than treating it as a single component of a quality management system. The good news is, if you are already working with systems aligned to the HLS you are in a great position to gain efficiencies.

Why? Before HLS, organizations could have multiple, disparate systems in place that involved duplicate time, effort, and resources to continually run these systems. With Annex SL organizations can benefit from aligning separate systems and conduct one business risk assessment that enables concerns on different topics to be managed, or taken advantage of, for maximum business gain.

Not only does the new ISO 9001:2015 help embed risk management into the heart of your organization but the common elements can help you align a QMS with other management systems you have in place. Or even if this is the start, it’s a great best-practice framework to manage your security efforts more effectively and efficiently, and helps you to be best-placed to add in more specific systems in the future.

Adding value with quality management

Data is a critical enterprise asset. By weaving ISO 9001:2015 into your ISO/IEC 27001 system it facilitates enhanced data quality and integrity, which can prove very important in the event you launch, or are a target of, an investigation.

 

  • Accuracy – Valid data are considered accurate: They measure what they are intended to measure
  • Reliable – The data are measured and collected consistently; definitions and methodologies are the same over time
  • Completeness – Completely inclusive: the Document Management System (DMS) represents the complete data and not a fraction of the information
  • Precision – The data have sufficient detail; in this case the “accuracy” of the data refers to the fineness of measurement units
  • Timeliness – Data are up-to-date (current), and information is available on time; the DMS produces reports under deadline
  • Presentable – The data must be neat and tidy and fit-for-purpose (ready as evidence in court or as record of regulatory compliance)
  • Integrity – The data are protected from deliberate bias or manipulation for political or personal reasons

 

Integrating ISO 9001:2015 with your Information Security Management System ensures you not only receive top management commitment on data integrity and security, but it aligns with the strategic direction of the organization and their overall approach to business risk. This removes a silo mentality, makes it easier to engage stakeholders at all levels of the organization, and allows focus on a common purpose, which can bring only positive results.

Whether or not you’re in a position to integrate multiple systems, HLS provides a great structure to bring different people together and collaborate to strengthen an organization’s resilience and achieve greater results. ISO 9001 hasn’t been adopted by over 1.1 million businesses around the world by accident. It remains the world most popular standard for a reason and the new ISO:9001:2015 update makes it much more attractive to business. So whatever role individuals play, there is potential to embrace this approach to quality management as a core to business improvement. It can only enhance your existing practices and complement your approach to managing cybersecurity and information risks.

Organizations certified with the previous version of ISO 9001 have until September 2018 to transition to the revised ISO 9001:2015 version. For more information on ISO 9001:2015, visit ASQ Quality Management Standards.

About the Author

John DiMaria; CSSBB, HISP, MHISP, AMBCI, CERP is the Global Product Champion for Information Security and Business Continuity for BSI Group. He has 30 years of successful experience in Standards and Management System Development, including Quality Assurance, EMS, Information Systems, ISMS and Business Continuity. John was one of the key innovators of CSA STAR Certification for cloud providers, a contributing author of the American Bar Association’s Cybersecurity Handbook and a working group member and key contributor to the NIST Cybersecurity Framework. More info at www.bsigroup.com

Mythics wins Small Business Achievement Award from Department of Homeland Security

Smutz

VIRGINIA BEACH, VA April 13, 2017 Mythics, Inc., an award-winning consulting firm, managed services provider and Oracle platinum resale partner, announced today that it is one of the 16 companies that have been selected by the Department of Homeland Security (DHS) to receive the 2017 DHS Small Business Achievement Award.

This award, presented at the 13th Annual DHS Small Business Ceremony on April 13, 2017, recognizes Mythics for its outstanding work in support of the DHS mission.

Mythics has provided outstanding service to multiple program offices at the Transportation Security Administration (TSA) by developing new and improved innovative business processes, training curriculums and change management processes to support TSA's on-going financial system modernization initiative.

"The Mythics team is honored to be recognized for our support of TSA and their mission to protect the Nation's transportation systems to ensure freedom of movement for people and commerce. We are proud to serve DHS every day and to assist in advancing their digital transformation effort," said Shane Smutz, Executive Vice President of Mythics Consulting. "This award is a humbling acknowledgement of Mythics' IT modernization expertise and an effective encouragement to our vigilant team as they strive to deliver continued excellence."

About Mythics

Mythics is an award-winning Oracle systems integrator, consulting firm, managed services provider and Platinum level member of Oracle Partner Network representing Oracle product lines across cloud, software, support, hardware, engineered systems and appliances.  Mythics delivers technology solutions serving the Federal Government, State and Local Governments, Commercial, Higher Education, Utilities and Healthcare sectors and is a trusted partner to organizations worldwide.  For more information, visit http://www.mythics.com.

BitSight develops rating system to assess cybersecurity risks within sovereign nations

Boyer

CAMBRIDGE, MA April 6, 2017 BitSight, the Standard in Security Ratings, today announced the general availability of Sovereign Security Ratings, the first objective measurement of national cybersecurity risk. Sovereign Security Ratings enable national intelligence and law enforcement organizations to align security initiatives within a country and its industries, identify risks and vulnerabilities, and drive improvement through a nation's critical infrastructure organizations.

Governments tasked with securing their nation's critical infrastructure from cyber threats are often left without credible context when processing security intelligence. BitSight's Sovereign Security Ratings synthesize cybersecurity data, allowing analysts to benchmark the security and risk posture of multiple countries and industries in one view. With this information, government organizations glean intelligent and actionable insights into threats and can initiate remediation with the appropriate parties.

As part of the BitSight Security Ratings Platform, the Sovereign Security Ratings portal also allows organizations to investigate cyber threats at a country-wide scope, using historical forensics within their given country. Security practitioners can use this feature to analyze whether a specific cyber threat affects organizations in their country.

"We want to extend the trusted, time-tested, and actionable benefits of Security Ratings to government agencies and organizations, allowing them to assess cyber risk on a national scale," said Stephen Boyer, co-founder and CTO for BitSight. "While many organizations leverage a variety of intelligence feeds, they struggle to find an objective measurement of security performance at a national level. They also lack the ability to benchmark the security performance at a country-by-country or industry-by-industry level. Sovereign Security Ratings provide greater context, allowing organizations to understand their level of cyber risk relative to others. There is no other equivalent offering on the market. Today's announcement marks another industry first for BitSight."

Sovereign Security Ratings Deliver:

Global Security Benchmarking: An innovative way to assess country and industry cybersecurity risk exposure, enabling national agencies to self-assess their cybersecurity capabilities. Governments can then compare industries and critical infrastructure companies against counterparts in other nations.

Portfolio Analytics: The ability to continuously monitor and compare the security performance of critical infrastructure companies.

Forensics: Access to forensic details and readily available infection data to facilitate remediation.

BitSight pioneered the Security Rating Services market in 2011, and strives to help all organizations identify and manage cyber risk. The BitSight Security Ratings Platform generates objective, outside-in ratings on companies' security performance. Using evidence of security outcomes from networks around the world, BitSight applies sophisticated algorithms to produce daily security ratings ranging from 250 to 900, where higher ratings equate to lower risk.

For more information on Sovereign Security Ratings, visit https://www.bitsighttech.com/sovereign-security-ratings.

About BitSight

BitSight is transforming how companies manage information security risk with objective, verifiable and actionable Security Ratings. Founded in 2011, the company built its Security Ratings Platform to continuously analyze vast amounts of external data on security issues and behaviors in order to help organizations manage third party risk, underwrite cyber insurance policies, benchmark performance, conduct M&A due diligence and assess aggregate risk. Seven of the top 10 cyber insurers, 80 Fortune 500 companies, and 3 of the top 5 investment banks rely on BitSight to manage cyber risks. For more information, please visit www.bitsighttech.com.

NetCentrics wins government contract to enhance federal cybersecurity

Barreda

HERNDON, VA April 5, 2017 NetCentrics Corporation, a leading provider of enterprise IT services and cybersecurity for the U.S. government, announced today the deployment of a breakthrough systems management technology for one of its government customers. The new product, OneSite™ from Adaptiva, increases cybersecurity and addresses longstanding obstacles of limited bandwidth and network saturation – providing a faster solution for IT upgrades to low-bandwidth assets for the first time.

"NetCentrics is committed to helping federal agencies implement solutions that increase security, reduce costs, and boost efficiency so they can focus on mission-critical work," said Cyndi Barreda, president of NetCentrics. "The deployment of OneSite means that, for the first time in our customer's history, they can address unique challenges, ultimately ensuring deployed, low-bandwidth assets receive necessary security upgrades. We look forward to working with our federal customer as they continue to deploy and implement this new solution to other assets."

NetCentrics deployed OneSite, which will significantly reduce the overall IT footprint required for hardware and software updates. The technology uses intelligence, automation, and bandwidth optimization techniques to distribute content, like software, applications, patches, and OS images, faster than any other systems management solution available today.

Some customer assets are often unavailable for hard-wired patching and updates because they are usually deployed for weeks or months at a time, requiring updates to either be pushed over satellite or postponed until the assets are available between missions. Upgrades over low-bandwidth were also costly and slow. Using OneSite, NetCentrics was able to significantly accelerate security upgrades and improve systems security.

About NetCentrics

NetCentrics is a leading provider of enterprise systems management, solutions engineering, application development, service delivery, cybersecurity services and innovation services to the Department of Defense, Homeland Security and other federal agencies. NetCentrics is ISO 9001 and ISO 20000 registered, CMMI Level 3 Assessed and a Microsoft Gold Certified Partner. The company has more than 20 years of experience supporting large IT programs. For more information about NetCentrics, see our website at www.netcentrics.com.

About Adaptiva

Adaptiva is a leading, global provider of IT systems management solutions that advance the power of Microsoft System Center Configuration Manager (SCCM). Adaptiva enables IT professionals to securely speed enterprise-wide software deployments without adding costly servers or throttling network bandwidth. The company's breakthrough peer-to-peer systems management technology uses intelligence, automation, and bandwidth optimization techniques to distribute content faster than any other systems management solution available today. Adaptiva's suite of smart scaling systems management products includes OneSite™ for rapid content distribution and management, Client Health™ for endpoint security, troubleshooting, and remediation, and Green Planet™ for energy-efficient power management and patching. The company's software is used by Fortune 500 companies and deployed on millions of devices in over 100 countries. Learn more at adaptiva.com.

PAE agrees to buy immigration services contractor FCi Federal

Heller

ARLINGTON, VA April 3, 2017 PAE today announced it has signed a definitive agreement to acquire FCi Federal. FCi, headquartered in Ashburn, Va., provides essential services for immigration and national security including adjudication support, eligibility verification and business process outsourcing services for federal government customers.

The transaction is subject to regulatory approval and is expected to close within 45 business days, after which FCi would become a business unit of PAE. Houlihan Lokey served as FCi's financial advisor in this transaction, and financial terms were not disclosed.

 

PAE is a portfolio company of Platinum Equity, which acquired the business in 2016. PAE CEO John Heller views the FCi acquisition as a perfect fit with PAE's strategy to expand and deepen its portfolio of services that support the essential missions of the U.S. government, its allied partners and other international organizations. 

"FCi is an impressive company with a strong track record for growth driven by talented employees and exceptional customer service," said Heller. "It's a great strategic fit, presenting new opportunities for both of our companies. It's also a strong fit culturally, as I know FCi and PAE share the same core values and commitment to the highest performance standards."

Platinum Equity Partner Louis Samson said the acquisition is an important step in PAE's continued growth.

"The addition of FCi will expand PAE's service offering and bring together a lot of very talented employees," said Samson. "We are delivering on our promise to invest in PAE's long-term strategy and will continue looking for new opportunities to expand organically or through additional acquisitions."

FCi Founder and Chairman Sharon D. Virts said the sale to PAE is the best move for FCi at this stage of the company's evolution.

"Today's announcement is the right path to position FCi Federal for continued phenomenal growth," said Virts. "Since founding FCi in 1991, we have been committed to providing high-quality service that differentiates us from competitors while placing a premium on taking care of our employees. That commitment will remain steadfast as we continue to catapult our competitive positioning for the future."

Following the close, FCi Federal, as a business unit of PAE, will operate from its current headquarters office in Ashburn, Va.

About PAE

PAE is a leading provider of enduring support for the essential missions of the U.S. government, its allied partners and international organizations. With over 60 years of experience, PAE supports the execution of complex and critical missions by providing global logistics and stability operations, technical services and national security solutions to customers around the world. PAE has a workforce of approximately 15,000 people in over 60 countries on all seven continents and is headquartered in Arlington, VA.

About FCi Federal

Operating in more than 40 states and territories, FCi Federal is one of the fastest growing government services firms in the industry providing a wide range of managed professional, administrative and technical services to federal agencies. With 25 years of experience in the federal market, FCi Federal brings depth and breadth of resources and engaged leadership to manage complex government programs, ranging from operating large production centers to providing integrated mission support services for geographically distributed operations. The company's nearly 5,000 employees and subcontractors put their core expertise in program management support, records management, adjudication support, fraud detection and other administrative support services to work in ways that routinely outperform expectations. More information about FCi Federal can be found at www.fcifederal.com.

About Platinum Equity

Founded in 1995 by Tom Gores, Platinum Equity (www.platinumequity.com) is a global investment firm with more than $11 billion of assets under management and a portfolio of approximately 30 operating companies that serve customers around the world. Platinum Equity specializes in mergers, acquisitions and operations – a trademarked strategy it calls M&A&O® – acquiring and operating companies in a broad range of business markets, including manufacturing, distribution, transportation and logistics, equipment rental, metals services, media and entertainment, technology, telecommunications and other industries. Over the past 22 years Platinum Equity has completed more than 185 acquisitions.

AMAG Technology wins Govie Award for Symmetry access control solution

Ross

TORRANCE, CA April 3, 2017 AMAG Technology is excited to announce that it is a 2017 winner of Security Today magazine’s The Govies Government Security Awards competition, which honors outstanding government security products in several categories. AMAG’s Symmetry Homeland Access Control was announced as a winner in the Access Control Software/Controllers category. AMAG Technology is a security manufacturer specializing in access control, video management, identity management, intrusion detection and visitor management.

“We are honored to receive this award and have our Symmetry Homeland Access Control solution recognized for its robust, feature-rich capabilities that have been securing local, state and federal entities for over the past two decades,” said AMAG Technology, Vice President, Global Sales and Business Development, Jody Ross.

Symmetry Homeland provides powerful integrated access control allowing users to take advantage of federal smart card standards such as FIPS 201, CAC, PIV, TWIC and FRAC as well as 128 bit credential number matching for UUID and FASC-N. Symmetry Homeland is FICAM compliant, having met all testing approvals required by the U.S. General Services Administration. Symmetry delivers alarm monitoring and routing, badging, graphical map interfaces, database partitioning for multi-tenant facilities, video management and more. The solution can be accessed via the SymmetryWEBTM client. Important optional capabilities include a fully integrated SCIF intrusion system incorporated with Symmetry Access Control hardware and the Threat Level Manager.

Winners were judged on features, innovation, user friendliness, interoperability, quality, design, market opportunity, impact on the security industry, technical advances and scalability.

For more information about Symmetry Homeland Access Control, please visit www.amag.com.

About AMAG Technology

AMAG Technology’s Symmetry™ Security Management Solutions are deployed across a wide variety of market segments from commercial to government, education, healthcare, banking, transportation, utilities, plus many more. Headquartered in Torrance, California with sales and support located throughout the Americas, EMEA, APAC and LATAM, AMAG provides customers with industry leading unified security solutions. AMAG Technology is part of G4S plc, the world’s leading global integrated security company which has operations on six continents and 585,000 employees. As the industry leader, AMAG focuses on delivering the latest technology to meet market needs. Its next generation of Symmetry security solutions help organizations operationalize their business to mitigate risk, meet compliance requirements and save money.

About G4S

G4S is the leading global, integrated security company, specializing in the provision of security services and solutions to customers. Our mission is to create material, sustainable value for our customers and shareholders by being the supply partner of choice in all our markets.

G4S is quoted on the London Stock Exchange and has a secondary stock exchange listing in Copenhagen. G4S is active in around 100 countries and has 585,000 employees. For more information on G4S, visit www.g4s.com.

Former Obama energy secretary named CEO of Nuclear Threat Initiative

Moniz

WASHINGTON March 23, 2017 Former U.S. Secretary of Energy Ernest J. Moniz has been named the new chief executive officer and co-chairman of the Board of Directors of the Nuclear Threat Initiative (NTI) effective June 1, 2017.  The announcement was made today by current CEO and Co-Chairman Sam Nunn and Co-Chairman Ted Turner, both of whom will remain as co-chairmen of the Board alongside Moniz. 

"We are delighted and honored that Ernie will be NTI's next CEO," said Nunn, who will continue to be actively engaged in NTI projects. "Ernie comes to us with sterling credentials, deep expertise and enormous credibility in the nuclear and other WMD security fields. Among many other accomplishments, he played a pivotal role in the successful conclusion of the Iran agreement. Ernie is an outstanding leader and a brilliant thinker, who is respected around the globe."

"In addition to Ernie's stellar technical and policy credentials, he brings a great passion for our mission," said Turner. "We believe he is an ideal candidate to step into the CEO role and know that he brings a strong commitment to further strengthen and grow NTI's impact. We are all very grateful to Sam for his extraordinary leadership as CEO over the last 16 years and look forward to our continued work together."

"I am very grateful to Sam and Ted and the entire NTI Board of Directors for this exciting opportunity," said Moniz. "I've admired NTI's work and, drawing on my experiences in government and in academia, am looking forward to expanding on its successful track record in reducing global risks in the nuclear, biological and cyber domains."

Moniz served as the Secretary of Energy at the U.S. Department of Energy during the Obama Administration.  He is a Ph.D. physicist with a long and distinguished affiliation with the Massachusetts Institute of Technology (MIT), where he is currently a part-time professor of physics post-tenure and special advisor to the president. His previous MIT roles included head of the Department of Physics and director of the Bates Linear Accelerator Center. He was also the founding director of the MIT Energy Initiative, designed to help develop technologies and solutions for clean, affordable, and plentiful sources of energy. Under his leadership, MITEI supported approximately 800 research projects at the Institute, had 23 industry and public partners supporting research and analysis, established an energy minor program for undergraduates, and engaged more than 25 percent of the MIT faculty in its projects and programs.

He previously served in government as Associate Director for Science in the President's Office of Science and Technology Policy and as Undersecretary of Energy during the Clinton Administration, where he was responsible for overseeing DOE's science and energy programs, led a comprehensive review of nuclear weapons stockpile stewardship, and served as the Secretary of Energy's special negotiator for the disposition of Russian nuclear materials.  

About the Nuclear Threat Initiative

The Nuclear Threat Initiative works to protect our lives, livelihoods, environment, and quality of life now and for future generations from the growing risk of catastrophic attacks with weapons of mass destruction and disruption (WMDD)—nuclear, biological, radiological, chemical, and cyber. Founded in 2001 by former U.S. Senator Sam Nunn and philanthropist Ted Turner, NTI is guided by a prestigious, international board of directors. Sam Nunn serves as chief executive officer; Des Browne is vice chairman; and Joan Rohlfing serves as president.

Druva, Carahsoft partner to protect cloud data for public sector

Packer

March 22, 2017 Druva, the leader in cloud data protection and information management, and Carahsoft Technology Corp., the trusted government IT solutions provider, today announced that Carahsoft will serve as Druva’s public sector distribution partner. Under this agreement, Carahsoft will proactively market and sell Druva inSync, the company’s flagship cloud data protection and information management solution, which Carahsoft will make available to the public sector and its reseller ecosystem via Carahsoft’s SEWP contracts. The solution enables agencies to securely manage data protection and information governance across endpoints and cloud applications with unparalleled ease and sophistication.

“Today’s public sector organizations require the highest levels of security and data privacy. In addition to the best technologies, the need to operate in a secure cloud environment and adhere to standards such as FIPS 140 is a unique and demanding need,” said Dave Packer, Vice President of Corporate and Product Marketing at Druva. “Whether part of the federal, state or local government, organizations now require data solutions that are compliant with the latest regulations and deliver the most cutting edge technologies. With the Druva and Carahsoft partnership, the public sector can now easily and assuredly protect their users’ valuable data while adhering to all regulations and compliance requirements.”

Embracing modern data protection poses a unique set of challenges for federal, state and local government agencies and contractors, especially when it comes to security requirements and cloud deployments. Druva inSync enables government organizations to overcome these barriers, delivering a U.S. government-compliant cloud environment that adheres to FIPS and ITAR regulations. Moreover, Druva inSync is built on AWS GovCloud which is a FISMA and FedRAMP compliant infrastructure that keeps data protected around the clock.

Druva provides an integrated Cloud Information Management solution that unifies data protection and governance to provide increased data visibility and manageability across laptops, PCs, smart devices and cloud applications (e.g., Microsoft Office 365, Google G Suite and Box). Its flagship product Druva inSync allows agencies to have a single data control panel for backup/recovery, compliance monitoring, federated search, anomaly detection and eDiscovery processes across these endpoints and cloud applications. Organizations are able to alleviate data risks and simplify business processes without impacting employee productivity.

“With the addition of Druva inSync to our data protection offerings, we are able to deliver a complete solution in user data backup and management, and provide our government customers and reseller partners with a capability that increases the visibility and availability of cloud data, while reducing risk, complexity and cost,” said Brian O’Donnell, Vice President at Carahsoft. “We are especially excited about the security of their cloud application, which is FIPS 140 validated with AWS GovCloud availability, as well as Druva’s ability to provide a restore solution for endpoints and cloud applications that can be done at any time, even during an attack.”

Druva InSync is available immediately via Carahsoft’s SEWP Contracts NNG15SC03B and NNG15SC27B. For more information, contact Carahsoft at 703-889-9818; or register for a complimentary webcast titled, “Protect Data in the Era of Modern IT,” being held April 4, 2017 at 11am ET.

Click here for more information about how Druva inSync can securely manage data protection and information governance across endpoints and cloud applications for your organization.

About Druva

Druva is the leader in cloud data protection and information management, leveraging the public cloud to offer a single pane of glass to protect, preserve and discover information – dramatically increasing the availability and visibility of business critical information, while reducing the risk, cost and complexity of managing and protecting it.

Druva’s award-winning solutions intelligently collect data, and unify backup, disaster recovery, archival and governance capabilities onto a single, optimized data set. As the industry’s fastest growing data protection provider, Druva is trusted by over 4,000 global organizations and protects over 25 PB of data. Learn more at www.druva.com and join the conversation at twitter.com/druvainc.

About Carahsoft

Carahsoft Technology Corp. is the trusted Government IT solutions provider. As a top-performing GSA Schedule and SEWP contract holder, Carahsoft serves as the master government aggregator for many of its best-of-breed technology vendors, supporting an extensive ecosystem of manufacturers, value-added resellers, system integrators, and consulting partners committed to helping government agencies select and implement the best solution at the best possible value.

The company's dedicated Solutions Divisions proactively market, sell and deliver VMware, Symantec, Veritas, EMC, Adobe, F5 Networks, Google Cloud, ServiceNow, Open Source, HPE Software, SAP, Salesforce, and Innovative and Intelligence products and services, among others. Carahsoft is consistently recognized by its partners as a top revenue producer, and is listed annually among the industry's fastest growing and largest firms by CRN, Inc., Forbes, Washington Technology, The Washington Post, Washington Business Journal, and SmartCEO. Visit us at www.carahsoft.com.

Threat Sketch joins DHS cybersecurity information sharing program

WINSTON-SALEM, NC March 16, 2017 Starting in 2017, Threat Sketch will begin receiving real-time cybersecurity intelligence information from the Department of Homeland Security that will complement and greatly expand the cyber crime statistics used to drive the flagship product, the Threat Sketch Risk Assessment. "Joining this program is a significant step in our mission to put big-company tools, data, and expertise into the hands of millions of small businesses across the country," said Rob Arnold, founder and CEO of Threat Sketch.

The Threat Sketch Risk Assessment is a high-level, methodical examination of cyber risk that combines industry cyber-crime statistics with a high-level profile of a potential target company to predict what types of cyber attacks are most likely to happen and estimate just how big the impact will be. What makes this product unique is that it is designed for companies of 100 employees or fewer. "I have worked in internet security and consulting for over 20 years, and during that time I saw that the steps taken by large companies to prepare for and protect their businesses from cyber crime were often out of reach for smaller companies, due to insurmountable costs and the demand on executives' time," Arnold said.

According to the non-profit organization National Cyber Security Alliance, 60% of small businesses suffering a major attack will be out of business within six months. These statistics show exactly why it is crucial to be prepared. The Threat Sketch Risk Assessment is a short, online survey where participants provide information about their business. This information is then analyzed through Threat Sketch's proprietary system, using data from sources including the DHS, and the final result is a report that will help the business executive and IT team prioritize spending and security measures. "We understand that cybersecurity is a business problem first, and a technology problem second," Arnold said.

About Threat Sketch -- Founded in February 2015, in Winston-Salem, NC, Threat Sketch provides tools that enable small business owners and executives to evaluate and manage cyber security at a strategic level. The executive team brings decades of IT, risk analysis, financial/economic and project management experience and expertise to provide tailored, strategic counsel to a wide variety of small business clients. To learn more call 844-487-4757, or visit www.threatsketch.com .

Pages

 

Recent Videos

HID Global is opening the door to a new era of security and convenience.  Powered by Seos technology, the HID Mobile Access solution delivers a more secure and convenient way to open doors and gates, access networks and services, and make cashless payments using phones and other mobile devices. ...
Mobile device forensics can make a difference in many investigations, but you need training that teaches you how to get the most out of your mobile forensics hardware and software, and certifies you to testify in court. Read this white paper to learn how to evaluate mobile forensics training...
PureTech Systems is a software company that develops and markets PureActiv, its geospatial analytics solution designed to protect critical perimeters and infrastructure.  Its patented video analytics leverage thermal cameras, radars and other perimeter sensors to detect, geo-locate, classify, and...
PureTech Systems is a technology leader in the use of geospatial video, focusing on perimeter security.  When combining geospatial capabilities with video analytics and PTZ camera control, managers of critical facilities can benefit by allowing the video management system to aid them in the process...