Feds Get Detailed Cloud Planning Advice - InformationWeek

InformationWeek is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

04:16 PM
Connect Directly

Feds Get Detailed Cloud Planning Advice

Private sector execs, academics suggest changes like updating laws and setting research priorities, share practical recommendations for CIOs.

Top 20 Government Cloud Service Providers
(click image for larger view)
Slideshow: Top 20 Government Cloud Service Providers
An industry and academia-led group created with the urging of federal CIO Vivek Kundra and the Department of Commerce released recommendations on Tuesday on how the government can better foster the deployment of cloud computing and a cloud buyer's guide for government agencies.

In its recommendations, the Commission on the Leadership Opportunity in U.S. Deployment of the Cloud, or Cloud2, a group of 71 academics and industry execs put together by industry group TechAmerica, encouraged the Obama administration to take a number of steps that the group said would help government become more efficient and spur a more rapid development of the cloud computing market.

The Cloud2 effort parallels work going on at NIST to develop cloud computing standards and case studies. It also provides a bit of a roadmap for the government and government agencies as they pursue the Obama administration's "cloud first" policy that requires agencies to consider cloud platforms as they plan new IT projects.

The commission's 14 recommendations fall broadly into four buckets: facilitating trust and security, managing data flows, transparency and data portability, and changing policies in miscellaneous areas from acquisition to training. The recommendations include steps that agency IT departments can take on their own as well as steps that will need to be taken by policy-makers and even industry.

In terms of steps that IT departments can take on their own, for example, the commission recommended that agencies begin considering whether they can host certain workloads in other countries, rather than requiring cloud vendors to host everything on American soil as most agencies do today. "Trust and security depend on many factors, and physical location is just one of many," Dan Reed, corporate VP of tech policy for Microsoft, said at a press conference to announce the recommendations.

The commission also recommended that government upgrade its IT infrastructure to optimize for cloud computing and create formal education and training around cloud computing.

As for policy changes, the commission had no shortage of ideas, including changing how IT projects are funded and budgeted, updating the 25-year-old Electronic Communications Privacy Act, developing a joint research agenda with academia and industry, updating and strengthening criminal laws against hackers, facilitating identity management efforts, and improving breach notification laws.

The 16-page buyers guide gives federal agencies pointers on how to comply with the cloud first policy, providing them with a series of best practices, including recommending that agencies build detailed business cases for cloud investment, prioritize and assess the cloud attributes they are looking for in each cloud platform such as automatic upgrades and ease of use, understand the triggers for considering cloud deployment for specific IT projects, and understand security requirements. It also lays out best practices across several different functional roles, from acquisition managers to CIOs.

The group has shared or plans to share its recommendations widely across government with stakeholders like outgoing federal CIO Kundra, Commerce Secretary Gary Locke, and Pat Gallagher, director of NIST. Capellas said that the recommendations are "living documents" and will be updated moving forward.

Security concerns give many companies pause as they consider migrating portions of their IT operations to cloud-based services. But you can stay safe in the cloud. In this Dark Reading Tech Center report, we explain the risks and guide you in setting appropriate cloud security policies, processes and controls. Read our report now. (Free registration required.)

We welcome your comments on this topic on our social media channels, or [contact us directly] with questions about the site.
Comment  | 
Print  | 
More Insights
2021 Outlook: Tackling Cloud Transformation Choices
Joao-Pierre S. Ruth, Senior Writer,  1/4/2021
Enterprise IT Leaders Face Two Paths to AI
Jessica Davis, Senior Editor, Enterprise Apps,  12/23/2020
10 IT Trends to Watch for in 2021
Cynthia Harvey, Freelance Journalist, InformationWeek,  12/22/2020
White Papers
Register for InformationWeek Newsletters
The State of Cloud Computing - Fall 2020
The State of Cloud Computing - Fall 2020
Download this report to compare how cloud usage and spending patterns have changed in 2020, and how respondents think they'll evolve over the next two years.
Current Issue
2021 Top Enterprise IT Trends
We've identified the key trends that are poised to impact the IT landscape in 2021. Find out why they're important and how they will affect you.
Flash Poll