1 Geospatial Platform Update June 26, 2014 FGDC Steering Committee Jerry Johnston US Department of the Interior
Dec 17, 2015
1
Geospatial Platform Update
June 26, 2014FGDC Steering Committee
Jerry Johnston
US Department of the Interior
2
Geospatial Platform Components
Web Presentation and Collaboration
Search / Catalog
National Geospatial Data Assets
Shared IT and Data Investments
Geoplatform.gov
4
Web Presentation & CollaborationRelease of GeoCONOPS CommunityAdvancement of World Wide Human Geography Data (WWHGD) Working Group Community Enhancements coming to “trending data”Viewer application for discovery/mashup in test
Web Presentation and Collaboration
Search / Catalog
National Geospatial Data Assets
Shared IT and Data Investments
Geoplatform.gov
Working on enhanced / new documentation for CS-W,
ArcGIS Online Account, CKAN, Developer Tools, etc.
6
Search / CatalogCatalog back end enhancements (Data.gov and Geoplatform.gov)
Catalog Service Open Search and Improved Collection Management
Search updates: Improved search within collections
Enhanced capabilities for marking content owned by others for inclusion in a Community
Web Presentation and Collaboration
Search / Catalog
National Geospatial Data Assets
Shared IT and Data Investments
Geoplatform.gov
7
Shared IT and Data InvestmentsWorking on release of new batch of HSIP Public dataClimate Toolkit / Climate Data InitiativeOpen Water Data InitiativeArcGIS Online FISMA A&A issued by USDA
Web Presentation and Collaboration
Search / Catalog
National Geospatial Data Assets
Shared IT and Data Investments
Geoplatform.gov
Federal Geospatial Solutions FISMA Strategy
Amazon IaaS
ESRI SaaS(FIPS 199 Low)
NITC PaaS, IaaS
(FIPS 199 Moderate)
ESRI PaaS (2)(FIPS 199 Moderate)
ESRI SaaS (1)(FIPS 199 Moderate)
Amazon Cloud Infrastructure
NITC Cloud Infrastructure
Data Exchange and SecurityGoverned by Interconnection Security Agreement and ServiceLevel Agreement
Separate all USDA internal Services and Integrated Development/Mashup Environment (PaaS) into a separate ESRI application, distinct from those that interact with outside cloud services and/or SaaS
Note – The NITC Data Center and PaaS environment have existing ATO’s and inheritable controls
ISA
Create an ESRI Portal providing services to the public and outside agencies. Some data provided by NITC/ESRI
Note – 5 ATO’s are depicted here (Amazon IaaS , ESRI SaaS) and (NITC PaaS , ESRI SaaS (1) and ESRI SaaS (2))
8
Stephen LoweGeospatial Information Officer
Office of the Chief Information Officer
ATO
System Architecture StackApplication
Customer Configured
ApplicationEsri Managed
Infrastructure Cloud Provider Managed
Server Infrastructure(Servers, Storage, Racks)
Network Infrastructure(Switches, Routers, Cables, SAN)
Data Center(Physical facility, UPS, Cooling)
Web Admin App(Org-wide settings, Management)
End-User Org Portal(Create maps, Share, Discover)
ArcGIS Online Application(Portal, Map Services, Tasks, Account Management)
Data(Portal, Index, Hosted)
OS & MiddlewareEsri & Cloud Provider
Managed
Middleware
Operating System
Stephen LoweGeospatial Information Officer
Office of the Chief Information Officer9
Solution Audits and AccreditationsLayers of Responsibility & Assurance
Web Server & DB software
Operating system
Instance Security Management
Hypervisor
ArcGISManagement
Cloud Provider
Physical
Web App Consumption
Agency
Esri
Cloud ProviderISO 27001 SSAE16FedRAMP Mod
Tier 1 & 2 Incident ManagementSSAE16
AGOL SaaSFISMA Low(USDA)SafeHarbor(TRUSTe)
FISMA
Stephen LoweGeospatial Information Officer
Office of the Chief Information Officer
Artifacts Available for Agency ReviewUSDA:
ATO-based design, testing and controls documents in CSAM
Cloud Infrastructure Provider: SSAE16, ISO27001, FedRAMP Moderate Package Report available from cloud providers under NDA
Esri: SSAE16 for Tier 1 & 2 incident management of ArcGIS Online System Security Plan (SSP) – Agency references removed Reports available from Esri under NDA Cloud Security Alliance (CSA) Answers Publically Available
Stephen LoweGeospatial Information Officer
Office of the Chief Information Officer11
Role of OCIO in POAM Management
Stephen LoweGeospatial Information Officer
Office of the Chief Information Officer
Federal Information Security Management
Act – 2002 (FISMA)
Requirements
Guidelines
Department of Commerce
National Institute of Standards and
Technology
Special publication Series
SP 800-37 Risk Management Framework
The White House
Office of Management and
Budget (OMB)
Memoranda
Circulars
Federal Information Processing Standards
(FIPS)
FIPS 199
FIPS 200
Departmental
USDA POAM Policy / Standard
Operating procedures (SOP)
Oversight of OMB mandates and FISMA / NIST requirements
Outreach and agency support
for FISMA activities
Federal Government Implementation ActivitiesEsri AGOL
ATO Granted
FGDC Steering
Committee
Objective:Complete review for FISMA Low ATO
Objective:Communicate achievement, access, benefits of ATO
Objective:Present Esri product and service support for secure AGOL
Objective:Provide guidance for enterprise products and services
Objective:Provide Fed CIO, E-GOV, RMO with framework for shared services
Activity:- Inventory, test, and document existing AGOL capabilities and competencies
Activity:- Present summary business case to Committee- Elicit agency participation in tactical implementation workshop
Activity:- Promote benefits model - Establish common service criteria- Identify customer development tracks
Activity:- Explain practitioner tools- Promote content and templates- Elicit consultation and training requests
Activity:- Provide CPIC interpretative framework - Integrate geospatial as core IT portfolio component
Outcomes:Federal agency secure access to AGOL cloud platform
Outcomes:Increase rate of adoption
Outcomes:Uniform customer service quality
Outcomes:Reduce duplication, and customization
Outcomes:Impact geospatial brand perception
13
June 2014 June 2014
Stephen LoweGeospatial Information Officer
Office of the Chief Information Officer
Esri International
UC
July 2014
CIO Council Briefing
July 2014
OMBBriefing
August 2014
Partner ReuseUSDA Policy/Deploy Geospatial Platform Awareness/Endorse Portfolio Management
Next Steps Formulate agency partnership agreementsEstablish standard operating process for ATO material access/check-in-out/updatesCreate requirements gathering template: EPA exampleConvene USDA and Agency CISO meeting for Q&A - July Collect and normalize agency requirementsEstablish POAM Mitigation Schedule Determine deployment strategy and priorities in FY2014Publish branding material in various forumsDevelop common boilerplate language for OMB business case/project/portfolio stat/etc…
14Stephen Lowe
Geospatial Information OfficerOffice of the Chief Information Officer
Point of Contact:[email protected] office
15Stephen Lowe
Geospatial Information OfficerOffice of the Chief Information Officer
16
National Geospatial Data AssetsEnhanced dataset management capabilitiesImplemented NGDA change management capabilities in PlatformForum user testingNew Theme Leads Community home page features
Web Presentation and Collaboration
Search / Catalog
National Geospatial Data Assets
Shared IT and Data Investments
Geoplatform.gov
17
Questions?