John Pientka

SPIES LIKE US ALL AGREE: “CLOUD HAS BEEN A GODSEND

Cloud Has Been A Godsend

Cloud has been a godsend for folks trying to implement systems quickly and for us to secure workloads better,” said CIA Chief Information Security Officer Sherrill Nicely at a recent conference. Surprised that our spies – ahem, the US intelligence community (IC) – uses cloud? What about security? Who built it and runs it? The story behind it, and its rapid and successful deployment, has a lot of lessons for all of us.

Yes, the CIA is a special place and yes, they do have very special security needs. But, if we think about it, they process vast amounts of information and they need to be agile and flexible to respond to evolving threats and situations. The cloud provides that agility and flexibility plus a virtually unlimited sea of capacity. How do you take advantage of that and still meet those special security needs. The answer was to build a “community cloud” that not only the CIA could use but the whole IC of 17 agencies.

Here is one of the best definitions from the National Institute of Standards:

A community cloud in computing is a collaborative effort in which infrastructure is shared between several organizations from a specific community with common concerns (security, compliance, jurisdiction, etc.), whether managed internally or by a third-party and hosted internally or externally. This is controlled and used by a group of organizations that have shared interest.

Sure sounds like this is just what the spooks would want. How they went about getting it was both straightforward and a bit industry shattering. Like most government agencies the CIA ran a procurement. Now Federal procurements are much like a Kabuki dance with very specific steps and regulations that must be followed to the letter. It does not necessarily land up with the government buying the best tech but instead often just selecting the vendor who knows the process the best. Can you say: HealthCare.com?

Nonetheless, the ball got rolling in 2012 and true to the process Microsoft and AT&T protested the CIA’s request-for-proposal specifications in mid-2012, forcing the CIA to pull the procurement and rework it. AWS (Amazon Web Services) then won the contract in early 2013, only to have the process slowed again by protests and legal proceedings from the then only other bidder, IBM.

IBM was and is a big government contractor. AWS at the time was not so much. The odds were that IBM would take this candy away from baby AWS. At first, that’s what certainly seemed to play out when the GAO – first stop in the protest process – declared for IBM. But AWS did not take it lying down and sued in federal court – the next step. To everyone’s surprise, the judge not only gave AWS the contract award but also slammed IBM for some sketchy proposal tactics. This was an industry moment of truth. Mighty Big Blue was not only defeated but all agreed the Amazon solution was better and IBM had tried to cheat to beat it!

AWS got the green light to start work in late 2013 and by early 2015 – less than 18 months – it was up and operational. Then AWS took it a step further with the CIA’s blessing. In the commercial world, AWS operates the AWS Marketplace. The AWS Marketplace was launched in 2012 to accommodate and foster the growth of AWS services from third-party providers that have built their own solutions on top of the Amazon Web Services platform. It provides a one-stop shop to get all kinds of applications and services.

AWS said why not do the same thing for the intelligence community. It launched the IC Marketplace allowing spy agencies – led by the CIA – to evaluate and buy common software, developer tools and other products that meet stringent security standards. This really shakes up the usual Federal software procurement process and enables even more of the flexibility and agility that were the original goals. Once your offering has been vetted for the Marketplace any properly cleared shop can try and buy.

Pretty nifty, eh? When was the last time you thought of your IT as a godsend?

Originally published August 18th, 2016

By John Pientka

John Pientka

John is currently the principal of Pientka and Associates which specializes in IT and Cloud Computing.

Over the years John has been vice president at CGI Federal, where he lead their cloud computing division. He founded and served as CEO of GigEpath, which provided communication solutions to major corporations. He has also served as president of British Telecom’s outsourcing arm Syncordia, vice president and general manager of a division at Motorola.

John has earned his M.B.A. from Harvard University as well as a bachelor’s degree from the State University in Buffalo, New York.

View Website
The Unintended – and Intended – Consequences of Cloud Data Sovereignty

The Unintended – and Intended – Consequences of Cloud Data Sovereignty

Cloud Data Sovereignty It seems that everything has unintended consequences – whether positive or negative. Intended consequences are those that are chosen. Unintended consequences are forced upon us. The consequences surrounding data sovereignty regulations are ...
How B2B Ecosystems & (Big) Data Can Transform Sales and Marketing Practices

How B2B Ecosystems & (Big) Data Can Transform Sales and Marketing Practices

B2B Ecosystems & (Big) Data Managing your relationships with customers, suppliers, and partners and constantly improving their experience is a proven way to build a sustainable and profitable business, and contrary to popular assumption, this ...
Principles of an Effective Cybersecurity Strategy

Principles of an Effective Cybersecurity Strategy

Effective Cybersecurity Strategy A number of trends contribute to today’s reality in which businesses can no longer treat cybersecurity as an afterthought. These include a rapid increase in the number of internet connected devices, an ...
As Enterprises Execute Their Digital Strategies, New Multi-cloud Landscape Emerge

As Enterprises Execute Their Digital Strategies, New Multi-cloud Landscape Emerge

The Multi-cloud Landscape The digital universe is expanding rapidly, and cloud computing is building the foundation for almost infinite use cases and applications. Hence, it’s not surprising that of the Fortune 50 enterprises, 48 have ...
How Brands Can Use IoT and Wearables to Enhance Customer Experience

How Brands Can Use IoT and Wearables to Enhance Customer Experience

Using IoT and Wearables as Part of the Customer Experience The IoT and wearables are on the verge of completely changing how brands interact with customers. Here’s how this tech will boost the customer experience ...
The Lighter Side Of The Cloud - Virtual Office Space
The Lighter Side Of The Cloud - Once A Year
CloudTweaks Comic
The Lighter Side Of The Cloud - Security Overkill
The Lighter Of The Cloud - Virtual Lunch Break
startup tech comic series
Star Wars IoT CES
Cloud Marketing Professional
The Lighter Side Of The Cloud - Bottlenecking

CLOUDBUZZ NEWS

Kaspersky Lab to open Swiss data center to combat spying allegations

Kaspersky Lab to open Swiss data center to combat spying allegations

LONDON (Reuters) - Moscow-based Kaspersky Lab plans to open a data center in Switzerland by the end of next year to help address Western government concerns that Russia exploits its anti-virus software to spy on ...
Sumo Logic and Partners to Host NYC DevOps Event with Dr. Nicole Forsgren

Sumo Logic and Partners to Host NYC DevOps Event with Dr. Nicole Forsgren

REDWOOD CITY, Calif., May 17, 2018 (GLOBE NEWSWIRE) -- Sumo Logic, the leading cloud-native, machine data analytics platform that delivers continuous intelligence, today announced it is hosting a DevOps industry event at the Eventi Hotel in New ...
Facebook Joins FIDO Alliance Board of Directors

Facebook Joins FIDO Alliance Board of Directors

Aligns with other leading global technology, financial services and e-commerce companies in effort to reduce world’s reliance on passwords MOUNTAIN VIEW, Calif., May 15, 2018 (GLOBE NEWSWIRE) -- The FIDO Alliance announced today that Facebook has been appointed ...