The Federal Government ATO Process: A Guide for ISVs

Government

Commercial independent software vendors (ISVs) who want to do business with the Department of Defense (DoD) and the federal government must meet strict security and compliance regulations by passing an Authority to Operate (ATO) process. The stakes are high for government IT security because sensitive and even top-secret data can be found in the government…

Senate Passed a Major Cybersecurity Legislation Requiring Incident Reporting

Government

  On Tuesday, March 2, 2022, the Senate passed major cybersecurity legislation to force reporting of cyberattacks and ransomware. This risk-based approach appears to take into consideration federal officials’ warnings on the potential of Russian cyberattacks against the United States. While cyber incident reporting is now a “landmark” bill, cloud service providers managing security and…