On Tuesday, March 2, 2022, the Senate passed major cybersecurity legislation to force reporting of cyberattacks and ransomware. This risk-based approach appears to take into consideration federal officials’ warnings on the potential of Russian cyberattacks against the United States.
While cyber incident reporting is now a “landmark” bill, cloud service providers managing security and compliance for Federal agencies, healthcare, and other critical infrastructure industries, ensure such risk-based policies and procedures are implemented to satisfy compliance standards such as FedRAMP, HIPAA, and HITRUST.
The Strengthening American Cybersecurity Act, if passed by the House, would also authorize the Federal Risk and Authorization Management Program (FedRAMP) to ensure federal agencies can adopt cloud-based technologies.
Fortunately, Project Hosts, an industry-leading CSP is currently providing Compliance-as-a-Service solutions to cloud-based technologies for federal agencies and the DoD. Private firms that are running critical infrastructure can take advantage of the FedRAMP process to help gain compliance to the new regulations and future proof their efforts against any new cyber legislation.
“Incident response is an integral part of the authorization process for FedRAMP, DoD IL5, and certifications such as StateRAMP and HITRUST”, says Scott Chapman, CEO of Project Hosts.
To learn more about our Compliance-as-a-Service offers contact us at: firstname.lastname@example.org.