The General Services Administration continues to stress that agencies align their IPv6 and zero-trust architecture implementation plans, ahead of the deadline for the latter next week.
Zero-trust architectures should be protocol agnostic, and plans should ensure there aren’t any gaps in the cybersecurity products used, said Tom Santucci, director of IT modernization within the Office of Governmentwide Policy, at an ATARC event Tuesday.
“Those two should coincide with each other,” Santucci said.
Agency cloud adoption strategies require planning at the C-suite level, and the Data Center Optimization Initiative that Santucci oversees developed a Cloud Smart guide to help. The guide advises agencies to evaluate their people, processes and tools, followed by the business value of cloud migration.
Examining cloud procurement and acquisition strategies is also important.
“One of the things we find is that people aren’t buying it right or aren’t using it right,” Santucci said.
Agencies will need to evolve cloud automation and monitoring tools over time and share information among their offices and teams because it’s often “amazing” how much one may know about how a modernization effort is going that the others don’t, he added.