In recent years, many DevOps teams with CI/CD pipelines have started exploring Security/Compliance for Government Agencies on their own through the addition of: static source code scans in their pipelines (Coverity, PMD, SonarQube, Yasca, etc) and traditional dynamic OWASP authenticated web application scans (BurpSuite, Acunetix). Consider a hypothetical company, Let’s Dev!, and that they already…
Incidents of cloud systems having their data stolen, held hostage, leaked, or destroyed are accelerating. 2019 data breaches include: Quest Diagnostics: medical, financial, and personal information for 11.9 million subscribers Capital One: credit card information for 100 million subscribers Zynga: Personal information and Facebook IDs for 218 million subscribers In addition to these large incidents,…
How your Organization can benefit from outsourcing your Security Compliance needs Today there are countless standards, mandates, laws and regulations that organizations are required to adhere to depending on what industry you are selling your application to. With all of the compliance requirements and the ever shifting IT landscape, it is certainly challenging – if…
Many organizations have adopted the cloud to improve their customer’s experience, their mobility and flexibility. These benefits come with the added appeal of cost savings. Running a local server requires ongoing maintenance and support costs. It is because of these and a list of other beneficial reasons that the Federal Government enacted a “cloud first”…
DoD Impact Level 5 PATO compliance is one of the hardest and strictest compliance authorizations that an organization can achieve. Only six companies have ever received an IL5 authorization from DISA. Currently only four companies still hold their DoD IL5 PATO authorization. The four companies that currently hold a DoD IL5 PATO include Oracle, DISA,…
The Defense Information Systems Agency (DISA) granted a Department of Defense (DOD) provisional authorization for Project Hosts’ Federal Private Cloud (PJHFPC). The PJHFPC offers a platform as a service (PaaS) private cloud, hosting Impact Level 5 (IL5) controlled unclassified information data. CONNEAUTVILLE, PENN. (PRWEB) APRIL 17, 2019 Project Hosts, Inc. is announcing that the Defense Information…
The cloud continues to be a valuable tool and a long-term investment across all industries. The Federal Government is no exception, as cloud adoption continues to increase across government agencies as well. A survey discovered that 1 in 5 federal government IT decision-makers is ready to provision cloud services and/or operate cloud environments. Within the…
The Defense Information Systems Agency (DISA) has granted Project Hosts’ Federal Private Cloud with a provisional authorization at data impact level 5. Project Hosts becomes the fourth company and the first company with under 100,000 employees to gain a DISA IL5 PA. Other companies with this clearance level include DoD, Microsoft, and Oracle. Project Hosts…
People say that hindsight is 20/20. You always know the right thing to do after something happens. Security professionals are no exception. They tend to react to security breaches by explaining what they would have done to keep themselves out of that situation. However, security breaches are not specific to any organization. They can happen…
The cloud has become an incredible tool for many organizations, yet, the cloud can be tricky to understand. Project Hosts is answering frequently asked questions about the cloud. “What is the cloud?” The cloud is a global network of servers that are hooked together and operate as a single ecosystem. Data is no longer accessed…