Waverley Labs Blog
True Risk Reduction Requires an “Authenticate-First” Solution
In an effort to bring enterprise-wide security to all its agencies, and in conjunction with its migration of services to the cloud, leaders in Pennsylvania's Office of Administration recently deployed a risk-based multi-factor authentication (RBMFA) system for...
read moreFederal IT Security …. It’s About the Applications, Not Compliance
An FCW article (White House hints a new cyber policies) recently reported that the White House is preparing to act on recommendations from its first cybersecurity directive issued last May. But it also noted concern from lawmakers who have been questioning gaps in...
read moreWill Increased Focus on CUI Lead to GDPR-like Controls in the US?
A recent FCW article, GSA signals new cyber rules for contractors, examined GSA plans to further bolster cybersecurity protections and reporting requirements for contractors. Currently, the new NIST specification NIST 800-171 provides guidelines for all DoD...
read moreWaverley Labs unpacks FedRAMP in new BrightTALK webinar
Waverley Labs’ Founder & CEO Juanita Koilpillai recently participated in a BrightTALK webinar on FedRAMP and its role in increasing cloud security. Juanita is also the former CTO of one of the first FedRAMP Third Party Assessors (3PAOs). The webinar titled FEDRAMP –...
read moreToday’s security controls are no match for mobile complexity
There is a solution emerging but going unnoticed An article in FCW Mobile apps demand collides with security concerns addressed the growing security challenges related to increasing adoption of mobile devices in the government workplace. Increasingly, workers are...
read moreNSTIC – Where are you when we need you?
The Trump administration ushered in Year Two by signing the 2018 defense authorization bill into law. It calls for the administration to develop and report to Congress on U.S. plans to deter and respond to cyberattacks by foreign powers, plans to defend U.S. networks...
read moreSoftware Defined Perimeters Come in Different Flavors
How to know which one is right for you? Verizon is now offering a Software Defined Perimeter (SDP) in a software-as-a-service (SaaS) delivery model. It is significant as it allows Verizon to offer private access to Verizon customer applications and also marks broad...
read moreIT Industry Leader Calls Software Defined Perimeter a “Game Changer”
I recently came across a blog by Kevin L. Jackson 2 Resiliency Trends in IT Management to Watch that outlined two new approaches to protection and resiliency - the two biggest management challenges facing enterprise security. Jackson is CEO and Founder of GovCloud...
read moreIT Modernization Must Be Grounded in Risk Management
There has been an increase in coverage recently as the White House's Office of American Innovation (OAI) sets the stage for IT modernization under the Trump administration. A Request for Information released by the GSA on behalf of OAI is seeking feedback on how best...
read moreSDPs significantly reduce time required to obtain ATOs
In a recent article in Government Cloud Insider article, Kris Osborn reported that the Department of Defense had launched a new effort to accelerate the migration to the cloud and the Department wants to leverage commercial sector IT innovations. A memo from Deputy...
read more