ATARC Federal IT Newscast

- Guest intro (1 min) - Mission and Functions of NIST (1:15)  - Mike's journey to NIST (4:20)  - Executive Order impact (6 mins)  - Why is IoT a topic of interest for the federal government? (9:20)  - What unusual risks does IoT present for federal workers? (16 mins)  - How can you assist agencies in incorporating IoT into their infrastructure? (25:50)  - How is NIST engaging with industry and internationally in efforts to improve? (29 mins)  - Is NIST in position to shape behaviors for IoT? (32:45)  - How much do you collaborate within NIST? (35:20)  - Conclusion/wrap up (39 mins)

Host: Bill Bunce, Pega Systems    Guest: Bryan Lane, FDIC   TimeStamps:  - Concept and history of "policy as code" (2 mins) - Organizational benefits using policy as code (4:30)  - Policy as code implementation mechanisms (10 mins)  - Measuring policy with data (15 mins)  - AI advancing this concept (16 mins)  - How important is it to operationalize the AI capability model? (20 mins)  - Culture change and The Opportunity Project (27 mins) - Closing (27:30)

During this Cloud and Coffee session, Ryan will share his experience being being a part of SBA’s first cloud project (Certify.SBA.gov), assisting SBA with their scale from 0 cloud to 4 FISMA classified systems in AWS, architecting the account structure and enterprise setup, and implementing server-less technology on SBA.gov and then spreading it out to the 4x other systems.

ATARC's Quantum Working Group hears from Eric Miller, Fellow at the Canadian Global Affairs Institute, on The Quantum Revolution: Opportunities and Challenges for Canada from his published October, 2021 policy paper (download here).

Tom Suder, CEO of ATARC, sits down to interview Senior Technology Advisor to the Deputy Associate Administrator for Government-wide Policy, U.S. General Services Administration, with 34+ years experience in government, John Sullivan. Timestamps: - Early background on John (1:15) - Path to finding first federal job (3:22) - Experience at EPA (4:34) - Enterprise Architecture and transition to OMB (9:30) - Association involvement and GITEC (17 mins) - Top programs and achievements (20:30) - Most impactful tech trends (24:20) - Superstar shoutouts (27 mins) - What drives you? (31 mins) - Passions outside of work (32 mins) - Closing (35 mins)

Tune into this panel to hear from topic experts to discuss the importance of Identity Management within federal agencies as the workforce shifts to a hybrid. What best practices do these topic experts recommend to help best protect data? How can government agencies implement an effective Identity Security model to minimize risk and keep pace with adversaries? What are best practices for Privileged Access Management controls?

Jim Richberg sits down to interview Senior Advisor for Cybersecurity at Office of Personnel Management, James Saunders to discuss the future of work at OPM Time Stamps: Intro - James's job at OPM (1 min) Cyber risks in a remote work environment (2 mins) Notable cyber events (6:30) Zero Trust technology roll out (9:10) OPM Guidance update (11:20) Increasing cyber security (15 mins) Data Loss prevention (22:45) How is OPM participating in expansion of ZTA (22:40) TMF (24 mins) Resources available for Cloud (25:20) Role of private sector supporting OPM (27 mins) Closing thoughts (29:40)

Co-hosts this season are Christ Oglesby and Terri-Lee Holland. Guest on this episode is Charlotte Lee. Timestamps: - Start time/introductions (5 mins) - Language around modernization (7:25) - Legacy Systems (8:30) - Government/Industry working together (11:18) - People and process approach (14 mins) - Scoping down contracts (16 mins) - Large contracts and big impacts (20 mins in) - What should gov't be doing when creating new contracts? (21 mins) - The move from UX to CX (28 mins) - Key factors for leadership (30:30) - Can technologists start becoming more human centric? (38:18) - Continuous education (43:30) - Leveraging information architecture (49:30) - Does a project management plan call for a change management plan? (53 mins) - Process flows and strategy (55:30) - Identifying the customer (60:35)

Podcast host, James Richberg, Field CISO and Trusted Security Advisor at Fortinet, interviews Information Security Professional at CISA, Branko Bokan. Time stamps: - Intros and mission of CISA (1 Min) - What are some lessons learned from the pandemic? (2:40) - Center of Excellence for telework at CISA (4 mins) - Cyber Monday (8 mins) - Bandwidth challenges (10:40) - Trusted Internet Connection and TIC 3.0 (12 mins) - Connectivity and Security in a remote work environment (15 mins) - IoT devices (18 mins) - Most notable cybersecurity events from the past (22 mins) - Ransomware (29 mins) - Protection, detection, and response (33:50) - Tabletop exercises (36 mins) - Zero Trust and the Executive Order (37:30) - Protective DNS for agencies (42:20) - CISA.gov/telework (43:30)

Sample Low Code Use Cases in the Government. Time stamps: - Intro from Bill (1 min) - Introductions from guests (2 mins) - How does NSF select the right tool for the right IT project? (6 mins) - How does KPMG make recommendations regarding Low Code tools? (9 mins) - Does implementing low code require a subtle mindset shift? (17 mins) - Does low code help solve the typical challenges faced by developers? (20 mins) - Thoughts on bringing new people into the low code environment? (24 mins) - NSF's Center Of Excellence (27 mins) - How do we overcome awareness challenges for low code? (33 mins) - Do you see low code platforms and the ability to deploy multiple applications help solve vulnerability challenges? (35 mins)