{ "version" : "https://jsonfeed.org/version/1", "content" : "news", "type" : "single", "title" : "To Get Things Done, You Need Great, Secure Tools |Digital.gov", "description": "To Get Things Done, You Need Great, Secure Tools", "home_page_url" : "/preview/gsa/digitalgov.gov/bc-archive-content-3/","feed_url" : "/preview/gsa/digitalgov.gov/bc-archive-content-3/2017/04/11/to-get-things-done-you-need-great-secure-tools/index.json","item" : [ {"title" :"To Get Things Done, You Need Great, Secure Tools","summary" : "To folks new to government, one of the most surprising differences between our work and work in the private sector are the barriers in accessing commercially available software, and commercially available Software-as-a-Service (SaaS) in particular. There are good reasons for these barriers: the government places premiums on considerations such as security, privacy, accessibility, license management,","date" : "2017-04-11T11:00:12-04:00","date_modified" : "2025-01-27T19:42:55-05:00","authors" : {"v-david-zvenyach" : "Dave Zvenyach"},"topics" : { "cloud-and-infrastructure" : "Cloud and infrastructure", "content-strategy" : "Content strategy", "product-and-project-management" : "Product and project management", "security" : "Security", "security" : "Security" },"branch" : "bc-archive-content-3", "filename" :"2017-04-11-to-get-things-done-you-need-great-secure-tools.md", "filepath" :"news/2017/04/2017-04-11-to-get-things-done-you-need-great-secure-tools.md", "filepathURL" :"https://github.com/GSA/digitalgov.gov/blob/bc-archive-content-3/content/news/2017/04/2017-04-11-to-get-things-done-you-need-great-secure-tools.md", "editpathURL" :"https://github.com/GSA/digitalgov.gov/edit/bc-archive-content-3/content/news/2017/04/2017-04-11-to-get-things-done-you-need-great-secure-tools.md","slug" : "to-get-things-done-you-need-great-secure-tools","url" : "/preview/gsa/digitalgov.gov/bc-archive-content-3/2017/04/11/to-get-things-done-you-need-great-secure-tools/","content" :"\u003cp\u003eTo folks new to government, one of the most surprising differences between our work and work in the private sector are the barriers in accessing commercially available software, and commercially available Software-as-a-Service (SaaS) in particular. There are good reasons for these barriers: the government places premiums on considerations such as security, privacy, accessibility, license management, and competition. It takes great care to work within those considerations while also providing digital teams with great tools to get work done.\u003c/p\u003e\n\u003cp\u003eSince GSA created the \u003ca href=\"https://www.gsa.gov/portal/category/25729\"\u003eTechnology Transformation Service\u003c/a\u003e (TTS) in May 2016, we have made enormous investments in the overall security posture of 18F, including bolstering the partnership between TTS and the GSA Chief Information Officer’s office (GSA IT). About six months ago, we announced that we were \u003ca href=\"https://18f.gsa.gov/2016/07/18/cloud-gov-full-steam-ahead-fedramp-assessment-process/\"\u003e“full steam ahead” on our FedRAMP assessment process for cloud.gov\u003c/a\u003e, a Platform-as-a-Service for government teams. As part of that process, we invested significant effort into automating \u003ca href=\"https://cloud.gov/docs/ops/configuration-management/\"\u003eour infrastructure\u003c/a\u003e to ensure continuous improvements. These efforts helped the cloud.gov team receive \u003ca href=\"https://18f.gsa.gov/2017/02/02/cloud-gov-is-now-fedramp-authorized/\"\u003efinal signatures\u003c/a\u003e from the CIOs of GSA, Department of Defense, and the Department of Homeland Security to certify that the platform meets the controls necessary to operate in the federal government.\u003c/p\u003e\n\u003cp\u003eTo make system delivery easier, and to pave the way for development teams in other agencies, we have also made significant investments in the past year to dramatically improve our ability to make use of commercially available SaaS products. Part of this process has been continuing our close collaboration with GSA IT. TTS can only deliver on projects like cloud.gov by working in tight collaboration with GSA’s CIO, CTO, CISO, and security and compliance folks. Together, we’re helping GSA chart this new territory. For example, in September, GSA IT issued a \u003ca href=\"https://www.gsa.gov/portal/directive/d0/content/541261\"\u003enew policy related to GSA’s IT Standards Profile\u003c/a\u003e, which established a new “pilot process” that enables TTS to test out commercially available cloud-based SaaS and ensure compliance with various federal laws and policies. Similarly, GSA IT issued a new \u003ca href=\"https://www.gsa.gov/portal/directive/d0/content/526805\"\u003eOAuth Integration Policy\u003c/a\u003e, which provides clarity around user authentication and authorization for TTS’s use of commercially available SaaS products. Our close collaboration means that we can have the tools and resources we need, and we’re more aligned with industry best practices.\u003c/p\u003e\n\u003cp\u003eSimilarly, TTS is focused on helping bring commercially available products and services that are used widely in the private sector into the federal government. For example, TTS and the GSA’s Federal Acquisition Service have been working in partnership to purchase SaaS products that TTS relies upon. We’re also working closely with GSA’s Schedule 70 program to help \u003ca href=\"https://www.gsa.gov/portal/content/122754\"\u003emake it easier\u003c/a\u003e for innovative companies to work with the federal government.\u003c/p\u003e\n\u003cp\u003eFinally, the FedRAMP program recently announced its “\u003ca href=\"https://www.fedramp.gov/launching-a-fedramp-tailored-baseline/\"\u003eFedRAMP Tailored\u003c/a\u003e” initiative, which will help accelerate the availability of low-impact SaaS offerings government-wide, making it possible for agencies to more readily adopt commercially available SaaS.\u003c/p\u003e\n\u003cp\u003eIn the long-run, GSA wants to make it easy for the government to take advantage of best-of-breed software, and to accelerate adoption of SaaS by government agencies. We will continue to improve TTS processes, ensure that our systems are secure, and partner with industry to help reduce the barriers for effective software delivery in the government.\u003c/p\u003e\n\u003cp\u003e\u003cem\u003eThis post was originally published on the \u003ca href=\"https://18f.gsa.gov/blog/\"\u003e18F blog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n"} ] }