Hybrid cloud is hard — but worth it in the long run, feds say
October 08, 2015
Early adopters of cloud said getting to a hybrid cloud model was filled with struggles. But the fruits of those labors have been worth the fight, they said.
David Stegon was a staff reporter for FedScoop and StateScoop from 2011-2014.
Eric Patterson, director of the Department of Homeland Security’s National Protection and Programs Directorate Federal Protective Service, testified on securing federal facilities before the House Committee on Homeland Security, Subcommittee on Cybersecurity, Infrastructure Protection, and Security Technologies.
From his testimony:
On creating a risk management program:
In terms of a risk management program, FPS’s operational activities are organized by the National Infrastructure Protection Plan’s (NIPP) Risk Management Framework, which calls for the following steps: Set Security Goals, Identify Assets and Functions, Assess Risks, Prioritize, Implement Protective Programs, and Measure Effectiveness. One area of recent significant progress related to risk assessment and the implementation of a risk management program is the ongoing implementation of FPS’s solution for conducting FSAs using an automated assessment tool. In May 2011, the decision was made to cease development of the legacy application known as the Risk Assessment and Management Program (RAMP) and to pursue a standalone assessment tool, in order to provide completed FSAs to customers. That decision has since been affirmed by the Department’s Office of Inspector General (OIG).
On addressing human capital issues:
In order to ensure that human resource requirements are aligned appropriately with FPS’s overall mission, a Strategic Human Capital Plan is being developed in conjunction with NPPD’s Human Capital Office. We are working to finalize the document; we intend to provide the plan and brief the Committee when it is finalized.
On improving oversight:
FPS is working to improve management and oversight of our over 13,000 Protective Security Officer (PSO) force. We have reviewed our operations nationwide and have taken steps at the national program level to ensure that performances under contracts are advantageous to the Government. We are actively working to implement the recommendations resulting from GAO and OIG reviews across the organization. Additionally, an Integrated Project Team (IPT) conducted a comprehensive review of how FPS resources the PSO oversight function and our current oversight policy.