BROADCASTS.com

b'The ultimate goal of a recent equivalency memo from the Defense Department is to support companies using cloud services that are not yet FedRAMP certified by allowing them to go through a third-party assessment instead.\\n\\u201cWe don\\u2019t have the capacity to accept or track [plans of action and milestones] like the Federal Risk Authorization Management Program (FedRAMP) does. But I do want to give credit to the companies that are trying to leverage a cloud that\\u2019s not yet FedRAMP certified by having a [third party assessment organization] to come in and say, \\u2018Okay, are they good with [National Institute of Standards and Technology Special Publication] 800-171 or not?\\u2019 And if they\\u2019re not, what\\u2019s the delta that the customer has to handle? That\\u2019s all we were trying to do there,\\u201d David McKeown, DoD\\u2019s chief information security officer, told Federal News Network after he spoke at the Meritalk\\u2019s Accelerate AI forum. \\u201cI understand there\\u2019s some confusion. I think we\\u2019re going to have a call with industry where we have a large number of them come onto the call, and talk through this a little bit more, and tell us where we can maybe clarify the memo.\\u201d\\nLearn more about your ad choices. Visit megaphone.fm/adchoices'