Awareness

FedRAMP 20x and the Future of the Cloud in Federal Service

May 29, 2025 Lazarus Alliance 0 Comment

hand holding a paper cloud with a padlock hooked to it.

FedRAMP, initially established in 2011 to standardize the security authorization of cloud services for federal use, has often been criticized for its complexity and cost. To address these challenges, the FedRAMP Program Management Office launched FedRAMP 20x—a modernization initiative designed to radically transform how cloud service providers achieve and maintain FedRAMP authorization.

FedRAMP 20x represents a strategic pivot toward efficiency, trust, and technological alignment for IT leaders and CSPs navigating the federal cybersecurity landscape.

What Is ISO 27017 and How Does it Inform Cloud Security?

Apr 6, 2023 Lazarus Alliance 0 Comment

As cloud computing continues gaining popularity, organizations increasingly turn to cloud services to store and process their data. However, with this increased reliance on cloud services comes a heightened risk of data breaches and cyber attacks, making cloud security a critical concern for businesses of all sizes.

To address these concerns, the International Organization for Standardization (ISO) has published a code of practice for information security controls for cloud services–ISO 27017. This standard provides guidelines and general principles for securing cloud-based systems and protecting against potential security threats.

This article will explore the critical components of ISO 27017 and their importance in securing cloud-based systems. We will also discuss some of the best practices for implementing ISO 27017 in your organization and the benefits that it can provide. Finally, we will examine some challenges organizations may face when implementing ISO 27017 and guide them on overcoming them.

The Top Cloud Security Threats in 2021

Jun 23, 2021 Lazarus Alliance 0 Comment

As more businesses, agencies and consumers turn to online services for everything from shopping to data intelligence and even disaster response, the threats from outside attackers have been increasing exponentially year after year. Cloud providers are expanding their offerings to cover several partners across several industries, and as such, they prove to be juicy targets for hackers who want to undermine their cybersecurity efforts and steal data through sophisticated cloud security threats.

Here, we’re covering the top 5 security threats that a cloud provider may face in 2021. While we’re only halfway through the year, it’s already turning out to be one of the most significant years on record in terms of data loss and theft. It’s up to Cloud Service Providers (CSPs) to understand modern threats and prepare for them with tight cybersecurity controls and compliance strategies.