Many federal agencies rushed into deals and deployment of cloud services to allow telework, and now Matthew Scholl of NIST’s Information Technology Laboratory and Michael Duffy of CISA want them to make sure they know who is responsible for the security of these platforms. Each stressed the need to stay continually engaged with the cloud service provider, with Scholl noting “cloud migration is not a set it and forget it. Sit down with your providers to make sure you fully understand where those breakpoints are, what those hybrid parts are, what those shared responsibilities are, and who’s doing what.”
Cybersecurity, Privacy, & AI
Trending Now
Daybreak Is OpenAI’s Answer to the AI Arms Race in Cybersecurity • Cyber Operations Aren’t Slow — Our Thinking Is • ‘No Time to Waste’ in Prepping Governments for AI Cyber Threats, Top Dem Lawmaker Says • ‘Insatiable Appetite’ for AI: Maven Usage Surged for Strikes on Iran, Pentagon AI Chief Says • Navigating Automation, Robotics, AI, and Data in a QMSR-Driven Manufacturing World
Agencies That Bought Cloud Services in Response to COVID-19 Need to Review Security Duties, Officials Say
Blackboard | Shutterstock
Stay compliant and protected with daily updates on cybersecurity, data privacy, and federal oversight with our Cyber & Privacy newsletter, delivering up-to-the-minute intelligence Monday–Saturday — Subscribe here.