Tres Vance, North America Cloud GTM lead at Red Hat, said government agencies looking to streamline their migration to the cloud and meet their technology modernization goals should consider establishing a cloud center of excellence that adheres to best practices for observability and governance as well as adopt open source platforms.
“When we move into the cloud, we don’t want to bring data center thinking with us, but we do want to bear in mind that some elements — such as password guidelines and encryption keys — do belong in the cloud,” Vance wrote.
“Agencies should look for cloud environments that enable the use of cryptographic standards and ensure that cloud providers have some form of remediation and continuous monitoring,” he added.
When it comes to security, Vance said agencies should look into the software bill of materials, community of practice and collection of tools of their cloud service providers, have the capacity to administer release management across on-premises systems and cloud platforms.
“Finally, agencies should tap into resources that will help them find the best fit in the cloud and then mature their use of the cloud so they can become more cloud-forward while integrating new components that are self-service and metered,” he noted.
Vance discussed how open source platforms could help agencies improve digital services, leverage data and achieve other modernization goals and how the open source community could enable agencies to comply with the May 2021 cybersecurity executive order and government’s zero trust programs.