Artificial Intelligence Archives - Page 8 of 11 - | ̽��Ƶ| ̽��Ƶ

Navy Customer Executive: WEST 2025: Top 10 Insights on AI, Cybersecurity and More

Posted on by Mike McCalip

Government leaders, military officials and industry professionals gathered at AFCEA’s WEST 2025 conference to discuss the newest technologies, modern networking capabilities and cybersecurity initiatives that enhance operations within the Sea Services. As a technology provider for the Department of Defense (DoD) and industry experts affiliated with the Navy, ̽��Ƶ and its partners are deeply aligned with the goals of the Navy and Sea Services and is committed to providing mission-critical technologies to keep the country safe. ̽��Ƶ and over 90 of our partners, including Adobe, Appgate, Crowdstrike, Docusign, HashiCorp, Hitachi, Qualys and WIZ joined at WEST 2025 to showcase solutions in artificial intelligence (AI), cybersecurity, DevSecOps, Zero Trust and more.

Check out the action from San Diego, California in our West 2025 recap video!

Here are the top ten insights for the technology industry and Government from this year’s conference.

1. Artificial Intelligence (AI) in the U.S. Navy

There are many opportunities for AI in the Navy, such as the OpenShip Tool and its usage of OpenAI’s Whisper model to translate incoming communications through the Navy’s Very High Frequency (VHF) radios. Remote monitoring can detect issues with technology and support rapid troubleshooting. AI can also be used to predict turnaround time, helping the workforce choose when to prioritize projects and deliver items on time.

AI can simplify operations. PMS 406 unmanned Maritime Systems runs the Unmanned Maritime Autonomy Architecture (UMAA), whose architecture creates a low barrier of entry for operation. With AI, update 6.0 of the UMAA and the Navy’s “Replicator initiative,” which works to field hundreds of autonomous systems by August 2025,” every soldier could operate a drone.

In the session “Fleet AI Deployment,” Lieutenant Artem Sherbinin, the Chief Technology Officer for the U.S. Navy ‘s Task Force Hopper, reviewed the three priority areas for the Navy’s AI usage, which are to:

Outthink adversaries

Enhance administrative work

Maintain goal of keeping 80% of combat surge-ready fleet

By using AI capabilities, the Navy can empower its acquisition force to act efficiently and quickly. Lieutenant Sherbinin also discussed two upcoming projects. Navy warships produce 150TB of data per warship per day. To manage this massive volume of data, the Navy is building a Warfighting Data and AI Ecosystem. This tool’s requirements are being drafted and will be submitted in the upcoming fiscal year, but currently include components such as data extraction, data processing and sensor updates to ships underway. Vendors should keep an eye out for pre-RFPs and RFI opportunities surrounding this capability. The second project is a new Commercial Solutions Offering (CSO), the Surface Lethality CSO. This soon to be released solution will be released through the Defense Innovation Unit on AI for Surface Lethality, and will expedite decision-making and enable the Navy to keep ahead of adversaries.

2. Red Teaming to Improve Cybersecurity

In the session “Leveraging Cloud to Accelerate Unmanned and Autonomous System (UAS) Mission Critical Capabilities,” Allen Mcafee, CTO of Fuse Integration, discussed the desire to increase red teaming—a process for testing cybersecurity by having allied hackers conduct non-threatening breaches—amongst autonomous systems to increase the robust quality of existing programs, especially in the electronic and kinetic fields. Vendors that specialize in cybersecurity solutions for autonomous systems should offer red team services to help solidify UAS security.

3. The Importance of Maritime Trade to Cybersecurity

In the session “Office of Naval Intelligence Brief,” Rear Admiral Mike Brooks, Commander of the Office of Naval Intelligence (ONI), spoke heavily on the criticality of maritime trade and the effect it has on the posture of the Navy. Chokeholds on shipping ports can hinder the economy, and so ONI is placing further emphasis on gathering intelligence in this area to preserve supply chains.

4. DISA’s New Cloud-Based Mission Partner Environment

To address logistic challenges, the Defense Information Systems Agency (DISA) developed a mission partner environment within the cloud. This tool acts as a joint sustainment decision tool and will feature an application hosting platform. DISA will initially host this environment, but is looking for commercial partners to host the platform and ensure its accessibility to all allies and partners.

5. Business Initiatives

The Navy has upgraded its approach to doing business, releasing its Information Superiority Vision (ISV) 2.0. In the initial version, the Navy’s framework for business was “Modernize, Innovate and Defend.” The 2.0 System is:

Optimize – IT teams can integrate new systems and turn off outdated ones

Secure – Personnel should think proactively in the design phase, rather than the more reactive “defend”

Decide – Staff places data into the hands of people who need it

This new system focuses on being proactive and innovative, integrating a focus on the workforce. Vendors should determine how their solutions fit into one or more of these pillars when marketing their technology and solutions.

The Navy can learn from all types of industries and technology. Former Commander of the U.S. Pacific Command and Former Ambassador to the Republic of South Korea Admiral Harry B. Harris Jr. recounts an example from the 1930s where the Marine Corps struggled to field a landing craft. The solution came from examining a small civilian craft in the local area, showcasing a “Higgins Boat Moment” where the Marine Corps were able to learn from civilian technologies, highlighting the importance of dual-use technology that is prioritized by the DoD.

Business is fulfilled when employees have bandwidth. In the session “Bringing Enterprise IT to the Edge to Accelerate Innovation,” Captain Kevin White of the PEO C4I PMW/A 170 Navy Communications and GPS Navigation Program discussed how bandwidth can fall into three different categories: morale, business applications and tactical services. When sailors have excellent bandwidth for morale and business applications, they are more efficient tactically.

The DoD is working on a portal that provides information and education on Small Business Innovation Research (SBIR) and Small Business Technology Transfer (SBTT) programs. This portal assists in creating effective proposals and understanding language and resources. This page, is still in development and will continue to be fleshed out in the upcoming weeks.

6. Renewing Technology

In the session “I’m charged with Putting a Flux Capacitor in a 1995 Mazda,” Brigadier General of the U.S. Marine Corps and Commanding General of the Marine Corps Installations West Nick I. Brown mentions that whether it is power systems or IT, infrastructure needs to be in place to accept new technology. Much of the DoD’s infrastructure is build on legacy systems or is out of date and needs to be replaced or upgraded before advanced solutions can be put in place. The U.S. Marine Corps is looking for vendors to help with new technology instillations and upgrading existing infrastructure, especially on the West coast. The U.S. Navy is allocating funds to achieve similar goals. It aims to improve its outdated infrastructure and systems to carry out technology initiatives by the Program Executive Office Digital and support the Navy’s culture of excellence.

In the session “Why Have a Lambo if You Don’t Have the Road?”, Col. Jared Voneida discussed five major areas that DISA is working on:

Building commercial and Government data centers

Improving theater transport and host nation infrastructure

Fortifying existing cybersecurity infrastructure and Defensive Cyberspace Operations-Internal Defensive Measures (DCO-IDM)

Maintaining command and control of the network

Completing initiatives by 2027

The Colonel also emphasized the need to divest from legacy time division multiplexing (TDM) infrastructure. While AI and machine learning (ML) has a plethora of uses, until AI/ML software divests from TDM infrastructure, DISA cannot utilize it effectively to assist with their network and data. With updated networks and hardware in place, the Navy and DoD can utilize the newest advanced solutions.

7. IT at the Center of the Workforce

To meet the rising demand in recruitment, the Navy has released its new enlisting agent, Robotics Warfare Specialist. With cybersecurity being more at the center of safety, the Navy aims to train more sailors in IT. Additionally, the Navy has released a new enlisted rating, Robotics Warfare Specialist, a new job that helps ensure effective planning and control of autonomous systems.

8. Improving Productivity by Decreasing Troubleshooting

IT and software issues can lead to lost productivity. RAND Corporation, a research and development nonprofit, recently regarding the viral LinkedIn post “” that highlighted user experience challenges with IT systems in the DoD. Their report estimated, on the conservative side, $2.5 billion in lost productivity due to IT and software difficulties. The Sea Services aim to increase the user friendliness of software to decrease the time lost to troubleshooting. In the sessions “Bringing Enterprise IT to the Edge to Accelerate Innovation,” Captain White of the U.S. Navy attributed the largest productivity gaps to IT teams relying on command line programing. Captain White encourages industries to develop more user-friendly systems that do not rely on command lines.

9. Compliance is No Longer Enough

In the session “DON CIO Perspective,” Navy CIO Jane Rathbun states that while Authority to Operate (ATO) tells you how secure a system is at that point in time, it does not encourage the readiness mindset that is optimal for protecting cybersecurity. Rathbun encourages switching to continuous monitoring and authorizations of systems, rather than stopping at ATO compliance. Rathbun specifically noted threat analysis and continuous monitoring as areas vendors might be assessed on in the future.

10. DevSecOps Products that Improve Marine Corps Productivity

The Marine Corps showcased 11 different products manufactured by the software factory product line related to development, security and operations (DevSecOps).

Check out details on the products below:

MyCareer – Supports the Manpower Management Enlisted Assignments (MMEA) and aids Marines by monitoring conversations, providing a virtual queue and matching partners based on data on marine preferences

ItemEyes – Provides marine units with a digitized inventory

Sensor Processing Analysis Radar Translation Application (SPARTA) – Hosts data from radar, automatic identification system (AIS) and unmanned systems all in one user-friendly interface

CRUSADER – Controls, processes and detects radar information in one easy to use library

Real-time Alerting, Interference Detection & Electromagnetic Reporting (RAIDER) – Provides real-time alerts for anomalies detected in the electromagnetic spectrum

All-domain Electromagnetic and Radio Organic Trainer (AeroT) – Helps Marines simulate and visualize their electromagnetic signature

EXODUS – Provides evacuees located abroad with personal services, such as mobile passport processing

TAK Design System – Helps Marines navigate and build plugins for Tactical Assault Kit (TAK)

ReserveHub – Enables Marines to find ideal areas when relocating, boosting retention rates

SnapDB – Analyzes pictures taken by unmanned aerial systems (UAS)

J-Series Message Library, Government Open-Source (JSML) – Translates code into J-Series

Through the developing partnerships between the technology industry and Government as well as ̽��Ƶ and our partners, the DoD can streamline in areas such as artificial intelligence, cybersecurity, DevSecOps, compliance and more. These insights from West 2025 illustrate the Navy and Sea Service’s commitment to continual innovation and maintaining the safety of the nation.

To learn more about cybersecurity and the defense industry, visit ̽��Ƶ’s defense portfolio to explore solutions showcased at AFCEA’s WEST 2025. For additional research into the key takeaways industry and Government leaders presented at WEST, view ̽��Ƶ’s extensive for a recap.

The Top 10 AI Events for Government in 2025

Posted on by Mike Adams

Artificial intelligence (AI) has grown from simple automation and robotics in the mid-20^th century to modern-day advanced technology, experiencing major evolution within the last several years. The power of AI and increased usage across many Public Sector markets has sparked a new wave of innovation surrounding development of tools, solutions, policy, ethics and more. Whether showcasing new technologies or networking with AI tech industry experts, dive into ̽��Ƶ’s recommendations below for the top upcoming AI events to attend this year as we explore all these topics and what is to come for AI.

��

August 11 – 13 | Las Vegas, NV | In-Person Event ��

Ai4 2025 is North America’s premier artificial intelligence conference, scheduled for August 11–13 at the MGM Grand in Las Vegas. The event is set to host over 8,000 attendees, 600+ speakers, and 250+ exhibitors, offering a comprehensive platform for exploring AI advancements across various industries, including the public sector.��

Ai4 2025 features a dedicated Government Track that delves into how AI transforms public services, enhancing operational efficiency and improving decision-making within Government agencies.��

Key Themes and Sessions Include:��

AI in Public Infrastructure: Insights from leaders like Dr. Mike Horton, Chief AI Officer at the U.S. Department of Transportation, on integrating AI into transportation systems while navigating regulatory landscapes.��

Healthcare Innovations: Discussions on how the Veterans Health Administration is leveraging AI to enhance patient care through proactive and personalized solutions.��

Ethical AI and Governance: Exploration of AI ethics, data governance and compliance, crucial for public sector implementations.��

Join and connect with ̽��Ƶ partners at Ai4, including: Dataiku, Dell Technologies, Google Cloud, IBM, MongoDB, Oracle, Red Hat, Anaconda, Lilt, NetApp, Snorkel, ZLTech, Weights & Biases, Yurts and Domino.��

��

August 13 – 14 | Vienna, VA | In-Person Event��

This two-day, hands-on Low-Code App Engine Innovation Workshop will show how agencies are reimagining their approach to automation and app development with ServiceNow’s Creator Workflows and Generative AI. Learn how to boost productivity at scale by building high-value, low-code mission apps with App Engine.��

During this workshop, attendees will learn:��

How to identify the right problems to solve in your agency with Low-Code tools.��

Successful examples of how other agencies are driving rapid innovation at scale with ServiceNow’s Low-Code App Engine.��

Practice ideation and rapid Low-Code app creation techniques that focus on making the world of work, work better.��

̽��Ƶ is the proud host of this event and is please to offer 16.6 continuing professional education (CPE) credits to those that attend the event through NASBA.��

��

August 14 | Boston, MA | In-Person Event��

The Center for Public Sector AI and the Center for Digital Government are building on the momentum of their AI Summit by bringing together state and local CIOs, AI leaders, and private sector partners to explore how artificial intelligence is reshaping Government. As agencies work to unlock AI’s potential while addressing trust, ethics, privacy and workforce challenges, this event offers a dynamic space to connect with peers and innovators who are driving real transformation across Government.��

Connect with ̽��Ƶ partners AWS, Dataminr and Dell Technologies at the State and Local AI Summit.��

September 3-4 | National Harbor, MD | In-Person Event

The 4th Annual AI for Defense Summit will bring together leaders from the Department of Defense (DoD), Federal agencies, industry, academia and the intelligence community to explore the strategic integration of artificial intelligence in defense operations. This year’s event will showcase advancements in generative AI, autonomous systems, cybersecurity, and operational AI, while addressing key topics like software acquisition reform, human-machine integration, and safeguarding critical infrastructure. Through panels, keynote sessions, and networking, attendees will gain insights into how AI is reshaping warfighting capabilities, accelerating decision-making, and strengthening national security across all domains.

Connect with ̽��Ƶ partners, including OpenAI, Ask Sage, Fiddler, Everfox, Seekr, AutogenAI and Scale AI.

��

September 9-12 | Washington, D.C. | In-Person Event��

A long-standing and experienced event, the Billington Cybersecurity Summit features an extensive array of cyber topics, speakers, sessions, and interactive breakouts for attendees to truly immerse themselves in the world of today’s emerging cybersecurity solutions and trends. In its 16th year, this leading Government cybersecurity summit promises an exceptional lineup of Government presenters, an invaluable leadership luncheon, an all-attendee networking reception and over 100 vendor booths featuring strategy development and technology demos.��

For a sneak peek into what you can expect at the summit, topics covered during last year’s event included:��

Zero Trust��

Ransomware��

Advancing cyber diplomacy��

Learning how to use proactive defenses��

Engineering AI into cybersecurity platforms��

Implementing an effective risk management approach��

Protecting critical infrastructure��

Stay tuned to the website for announcements around the speaker lineup and further summit information.��

̽��Ƶ is looking forward to sponsoring this year’s event and will feature a booth to engage with attendees throughout the week. We will also be hosting a large partner pavilion and encourage attendees to stop by and learn more about our partners and their technology solutions! Check out the events tab on our website for more details closer to the event!��

��

September 17 | Reston, VA | In-Person Event��

Digital transformation is reshaping how Government, industry and academia operate by leveraging new and evolving technologies to streamline business processes, reduce manual work through automation and expand access by overcoming geographic limitations. It enhances efficiency, agility and scalability, while delivering greater value and satisfaction to staff, customers and stakeholders. Often described as “reimagining how we do business,” successful digital transformation requires strong leadership, a clear vision, staff buy-in, and a solid understanding of how to maximize the impact of technology investments.��

Sessions to Look Out for: Breaking Ground: Real-World Implementation of AI and Next-Gen Technologies and Workforce Management in the Digital Age: AI-Driven Strategies for Recruitment, Retention, and Engagement of Government Employees��

This Summit is being planned and hosted by ACT-IAC and ̽��Ƶ and will focus on where Digital Transformation is today, how it has been used to transition to new innovative technologies and how it has improved overall performance. This event will also include an international element to hear how other countries have utilized digital technologies successfully.��

��

October 14 – 16 | San Francisco, CA | In-Person Event��

Dreamforce 2025, Salesforce’s flagship technology conference emphasizes AI-driven transformation, with a particular focus on the public sector. A central theme is “Agentforce,” Salesforce’s AI-powered digital labor platform designed to enhance operational efficiency and service delivery. For public sector organizations, Agentforce offers tools to automate tasks, improve constituent services, and streamline workflows. Sessions will showcase real-world applications, such as AI-powered virtual assistants, automated case management, and advanced analytics through Tableau Next, all aimed at modernizing government operations��

Sessions to Look Out for: Public Sector Product Roadmap: Future-Proof Your Mission and Elevate Every Education Journey with AI, Data, and Action.��

̽��Ƶ partner, Salesforce, returns with the most impactful event of the year. ̽��Ƶ is looking forward to hosting a Public Sector networking reception at Dreamforce again in 2025. Stay tuned for more details to attend or participate alongside us as a sponsor! Check out the events tab on our website for more details closer to the event!��

��

October 27 – 29 | Arlington, VA | In-Person Event��

The GovAI Summit 2025, scheduled for October 27–29 in Arlington, Virginia, is a premier event focused on the integration of artificial intelligence within the public sector. Organized by Modev, the summit aims to bring together government officials, policymakers, technologists, and industry leaders to explore the transformative potential of AI in governance.��

Discussions will emphasize the importance of ethical, non-discriminatory, and responsible AI governance, aligning with the mission of the GovAI Coalition to promote AI for social good.��

̽��Ƶ Top 10 AI Events ̽��Ƶ Blog Embedded Image 2025

November 16-21 | St. Louis, MO | Hybrid Event

Supercomputing25 (SC25) is the premier global conference for high-performance computing (HPC), networking, storage and analysis, tailored to address the needs of Government, defense and research organizations. This year’s event explores the transformative impact of HPC technologies on solving critical challenges, advancing national security and driving innovation across scientific and governmental missions.

At SC25, there will be a wide array of programming including presentations on new research, showcasing innovative work or practices and teaching and guiding the next generation of HPC students and professionals.

̽��Ƶ will once again host a large pavilion space and is an exhibiting sponsor of SC25 along with many of our partners at the forefront of high-powered computing, including AWS, Broadcom, Cloudian, Dell, Google, Groq, HPE, IBM, Intel, Microsoft, Microway, NVIDIA, Oracle, Red Hat and VAST Data.

December 7 | Fort Lauderdale, FL | In-Person Event

The DoDIIS Worldwide Conference 2025, scheduled for December 7–10 in Fort Lauderdale, Florida, will spotlight the integration of artificial intelligence (AI) within defense and intelligence operations. Hosted by the Defense Intelligence Agency (DIA), this event gathers leaders from the Department of Defense (DoD), Intelligence Community (IC), industry and academia to discuss mission-critical technologies and strategies.

̽��Ƶ will host an expansive Partner Pavilion highlighting cutting-edge technologies that support artificial intelligence. Within this space, our AI booth—located in the Vertical Alley—will feature demos from our AI solution partners.

—

To learn more or get involved in any of the above events please contact us at AITeam@carahsoft.com. For more information on ̽��Ƶ and our industry leading AI technology partners’ events, visit our AI solutions portfolio and AI Events page.

How AI Models are Advancing Weather Predictions and Forecasting

Posted on by Mike Adams

AI models have revolutionized weather forecasting, achieving levels of accuracy unimaginable just a few years ago. Today, a four-day forecast is as reliable as a one-day forecast was in the past, allowing meteorologists to predict weather further in advance with increased precision. This has practical benefits for everyday planning, like deciding whether to grill over the weekend or preparing for outdoor activities. More critically, improved forecasting is a game-changer for disaster preparedness in areas where timely and accurate predictions can save lives and reduce economic losses. ̽��Ƶ, The Trusted Government IT Solutions Provider™, leads in AI innovation, addressing Government challenges and unlocking AI’s potential to accelerate operations. Partnering with top AI companies, ̽��Ƶ delivers advanced, accurate weather models to support Government agencies.

The Power of AI and Data

Ground-level stations and satellite sensors generate a massive influx of information daily, which AI excels at processing. By analyzing real-time observations alongside decades of historical weather records, AI tools identify patterns and deliver accurate predictions. This capability is particularly valuable during extreme weather events.

̽��Ƶ AI Models Advancing Weather Forecasting Blog Embedded Image 2025

Innovative AI models like push the boundaries of what is possible in forecasting. GenCast delivers highly detailed forecasts with a resolution of about 16 miles, capturing localized weather patterns often missed by traditional methods. In addition to precision, these models offer unprecedented speed, processing vast amounts of high-quality data in minutes. This efficiency empowers emergency responders and decision-makers to act with confidence, reducing the impact of extreme weather on communities.

The integration of AI into weather forecasting has also significantly enhanced disaster preparedness. AI enables more precise identification of regions of concern, helping meteorologists and emergency teams allocate resources more effectively and reduce unnecessary efforts elsewhere. This targeted approach ensures critical areas receive the attention they need, while also preventing burnout among professionals tasked with monitoring weather events.

Moreover, meteorologists are expanding their roles to include emergency management skills. By combining AI insights with a deep understanding of societal and infrastructure impacts, they ensure forecasts translate into actionable strategies that protect lives and property. The combination of AI’s processing power and human expertise enables more effective evacuations, resource alignment and response efforts.

Challenges and Sustainability in AI Operations

While AI offers transformative benefits, it also presents challenges. The risk of misinformation from AI-generated weather models or images remains a concern, as untrained individuals may spread false predictions, causing unnecessary panic. This places an additional burden on professionals to correct misinformation and redirect resources. Maintaining a “human-in-the-loop” is essential for all AI deployments, ensuring that expert oversight validates outputs and mitigates potential errors. Furthermore, improving model training to recognize complex atmospheric dynamics, such as interactions with continental systems that can alter hurricane paths, is essential to enhancing forecasting accuracy. Weather forecasting is uniquely suited for early AI adoption because it generates massive amounts of data and benefits from high-quality datasets provided by organizations like the National Weather Service and NASA, ensuring models are trained on reliable information.

Sustainability is another critical consideration. Data centers and AI facilities consume significant amounts of energy and water, often in regions susceptible to drought or extreme heat. Expanding such operations across multiple sites could strain local resources. A lack of water for cooling systems, coupled with increasing heat waves, poses risks to operations and the energy grid, potentially leading to rolling blackouts.

Infrastructure capable of withstanding extreme weather is crucial. Facilities like the Salesforce Tower in California exemplify climate-resilient design by incorporating renewable energy, black water recycling and the ability to export energy to the city during optimal periods. More facilities of this kind are needed—those that not only minimize environmental impact but also contribute positively to surrounding communities. Strategic planning for site locations and designs, informed by accurate climate data, will be essential for ensuring sustainability and resilience.

How Government Agencies are Preparing for the Future

As Government agencies embrace an AI-driven future, they are modernizing infrastructure, curating large datasets and upskilling their workforce to harness AI’s potential. These efforts go beyond technological enhancements, focusing on using AI to address critical challenges such as refining weather predictions and mitigating the impacts of extreme weather. By integrating AI into disaster preparedness and emergency management, agencies are building a more resilient framework that protects lives, safeguards jobs and fosters innovative solutions for future challenges.

How ̽��Ƶ Can Help

̽��Ƶ works with a robust and growing ecosystem of thousands of IT solutions providers, including Google, NVIDIA and Microsoft, who have developed AI weather models that are predicting hurricane landfall faster and more accurately than traditional Numerical Weather Prediction (NWP) models. ̽��Ƶ removes barriers around the AI adoption process by providing the infrastructure, data management and cybersecurity solutions required to safely and securely deploy innovative technology in your agency. As Government agencies continue to navigate the complexities of the modern landscape, ̽��Ƶ’s AI partners stand ready to empower them with the tools and technologies needed to thrive in an era of unprecedented change.��

Discover solutions tailored to your needs in ̽��Ƶ’s Artificial Intelligence Solutions Portfolio and gain valuable insights with the AI Buyer’s Guide for Government.

Grammarly and ̽��Ƶ: Elevating Secure, Private Government Communication

Posted on by Ty Rottare

Grammarly and ̽��Ƶ have partnered to provide Government agencies with trustworthy AI assistance supported by robust security measures. Thanks to this collaboration, Government agencies gain access to Grammarly’s trusted AI assistant, which can help them improve communication and boost operational efficiency. This partnership marks a notable advancement in supporting Government agencies in navigating the evolving digital landscape.

Unlocking the Benefits for Government Agencies

As a recognized leader in providing IT solutions to the public sector, ̽��Ƶ offers extensive experience navigating the Government procurement process. Combined with Grammarly’s AI assistant, their expertise creates a powerful resource for Government agencies aiming to improve efficiency and productivity. When your agency works with ̽��Ƶ and Grammarly, you’ll experience the following benefits:

Grammarly Government Communications AI Blog Embedded Image 2024

Rapid Implementation: Our streamlined setup process enables agencies to implement Grammarly across their organization in one day. This allows teams to start benefiting from enhanced communication support almost immediately.
Time Efficiency: On average, our users save about 35 minutes per day per person on communication tasks. This time can be redirected toward more strategic tasks, leading to improved project outcomes and better service delivery to the public.
Enhanced Communication Quality: Effective communication is crucial for Government agencies. Grammarly’s tools help teams craft clear, concise, and impactful messages, ensuring that important information is conveyed accurately. With over 70,000 teams already benefiting from our services, our track record speaks for itself.
Boosting Brand Compliance: Our advanced communication tools can help agencies improve brand compliance by a remarkable 71%. This consistency in communication enhances public trust and strengthens the agency’s reputation.

Our Commitment to Privacy, Security, and Compliance

Grammarly’s commitment to enterprise-grade security offers significant benefits for Government agencies. As a trusted partner, Grammarly adheres to the highest industry standards, ensuring that sensitive information remains secure. The collaboration with ̽��Ƶ further underscores this dedication. Grammarly provides tailored AI solutions that meet the specific security needs of the public sector. By emphasizing stringent security measures, Grammarly helps agencies confidently use their tools while safeguarding critical data.

Additionally, Grammarly’s subscription-based revenue model ensures that customer content is never sold, placing a strong emphasis on user privacy and control. This transparency is essential for Government agencies, allowing them to maintain oversight of their data usage at all times. With a solid foundation supported by third-party audits and certifications, Grammarly provides compliance and regulatory support that agencies can rely on, reinforcing their ability to operate within legal and ethical boundaries while maximizing operational efficiency.

Empowering the Public Sector with AI

Through our partnership with ̽��Ƶ, we are dedicated to helping Government agencies lead, learn, and grow amid evolving demands. With Grammarly, your teams can confidently communicate, innovate, and serve the public more effectively.

For more information on implementing Grammarly within your agency, visit our website or contact ̽��Ƶ today! Together, we can enhance Government operations’ efficiency and ensure that every message counts.

̽��Ƶ. is The Trusted Government IT Solutions Provider, supporting Public Sector organizations across Federal, State and Local Government agencies and Education and Healthcare markets. As the Master Government Aggregator for our vendor partners, including Grammarly, we deliver solutions for Geospatial, Cybersecurity, MultiCloud, DevSecOps, Artificial Intelligence, Customer Experience and Engagement, Open Source and more. Working with resellers, systems integrators and consultants, our sales and marketing teams provide industry leading IT products, services and training through hundreds of contract vehicles. Explore the ̽��Ƶ Blog to learn more about the latest trends in Government technology markets and solutions, as well as ̽��Ƶ’s ecosystem of partner thought-leaders.

How to Accelerate the Journey to Government Compliance with CCM

Posted on by Esty Peskowitz

Government agencies are inundated with a vast amount of daily Governance, Risk, and Compliance (GRC) tasks and processes. Achieving regulatory compliance, an arduous process, can take up precious time that could be reallocated to other business-critical missions.

Continuous controls monitoring (CCM) is one solution. CCM leverages AI and extreme automation to help cut down on manual processes, allowing agencies to overcome regulatory hurdles, supercharge their staff, and make better risk-based decisions with fast, cost-effective automations.

Improving the Compliance Process

Creating a quality compliance report comes with heavy, manual processing time. CCM can help significantly by taking away some of the cumbersome brunt work, cutting 60-80% of the manual tasks required by GRC programs.

RegScale Government Compliance CCM Blog Embedded Image 2024

It can also help overcome hurdles to reaching valuable security authorizations. Completing an Authorization to Operate (ATO) package can take roughly six months to finish — but that process can be reduced to two weeks with the right CCM platform. CCM also gives agencies a leg up with gaining Continuous Authorization to Operate (cATO) by leveraging OSCAL, a machine-readable format that standardizes security control documentation and enables automated validation.

The Time-Saving Capabilities of Machine Learning and AI

In the past year, advances in machine learning (including large language models and generative AI) have created exciting new possibilities for GRC teams. AI and machine learning (ML) can offer everything from better data analysis to proactive risk management to a major reduction in manual processes. Here are a few of the most compelling use cases for :

Help employees proactively monitor traffic
Review code for errors unlikely to be caught by the human eye
Explain complex controls and procedures in everyday language, bridging knowledge gaps
Generate accurate, up-to-date documentation in one click

Overall, AI allows agencies to move faster, with more accuracy, and with better visibility. To free up staff to complete mission-critical objectives, agencies should create their own AI/ML usage strategies and implement them within a Compliance as Code framework.

How RegScale’s CCM Leverages Compliance-Trained AI

RegScale’s AI-enabled platform, RegML, combines CCM and leading large language (LLM) tools to streamline compliance management with intelligent automation and precision. This approach improves compliance by significantly reducing manual labor and costs. It also provides user-friendly summaries and guidance and improves accuracy and precision in documentation, freeing up staff to focus on core business objectives.

RegML has four main AI features:

AI Extractor, which automatically derives compliance documentation from existing policies and procedures.
AI Explainer, which is designed to demystify control statements by providing users with simple explanations of intricate controls.
AI Author, which helps draft control implementation statements in the context of relevant regulations and requirements. This process allows writers to focus on editing a draft, leading to fewer errors and better accuracy.
AI Auditor, which identifies gaps in controls and provides suggestions for improvement. This frees up teams to work on more critical tasks like fixing gaps and implementing controls.

CCM and the Future

Today, more and more work is being done in the cloud. As data becomes ephemeral and serverless, cybersecurity has become more important than ever — as have the mandatory frameworks governing it. Meanwhile, regulations such as NIST’s Secure Software Development Framework (SSDF), the Digital Operational Resilience Act (DORA), the Security and Exchange Commission (SEC) rules, Cybersecurity and Infrastructure Agency (CISA) mandates, and the European Union’s AI Act have or are predicted to undergo changes.

These shifting frameworks only make CCM more integral, as its AI features allow users to ensure that they are thoroughly compliant at every step of the process. By freeing time for additional tasks, and by maintaining adherence to changing regulations, CCM enables organizations to improve their GRC programs and streamline their operations.

To learn more about how RegScale’s CCM platform provides a layer of security around AI usage, watch its webinar .

̽��Ƶ. is The Trusted Government IT Solutions Provider, supporting Public Sector organizations across Federal, State and Local Government agencies and Education and Healthcare markets. As the Master Government Aggregator for our vendor partners, including RegScale, we deliver solutions for Geospatial, Cybersecurity,��MultiCloud,��DevSecOps, Artificial Intelligence, Customer Experience and Engagement, Open Source and more. Working with resellers, systems integrators and consultants, our sales and marketing teams provide industry leading IT products, services and training through hundreds of contract vehicles. Explore the ̽��Ƶ Blog to learn more about the latest trends in Government technology markets and solutions, as well as ̽��Ƶ’s ecosystem of partner thought leaders.

Third-Party Risk Management: Moving from Reactive to Proactive

Posted on by Tim Miller

In today’s interconnected world, cyber threats are more sophisticated, with 83% of cyberattacks originating externally, according to the . This has prompted organizations to rethink third-party risk management. The 2023 Gartner Reimagining Third Party Cybersecurity Risk Management Survey found that 65% of security leaders increased their budgets, 76% invested more time and resources and 66% enhanced automation tools to combat third-party risks. Despite these efforts, 45% still reported increased disruptions from supply chain vulnerabilities, highlighting the need for more effective strategies.

Information vs Actionable Alerts

The constant evolution and splintering of illicit actors pose a challenge for organizations. Many threat groups have short lifespans or re-form due to law enforcement takedowns, infighting and shifts in ransomware-as-a-service networks, making it difficult for organizations to keep pace. A countermeasure against one attack may quickly become outdated as these threats evolve, requiring constant adaptation to new variations.

In cybersecurity, information is abundant, but decision-makers must distinguish the difference between information and actionable alerts. Information provides awareness but does not always drive immediate action, whereas alerts deliver real-time insights, enabling quick threat identification and response. Public data and real-time alerts help detect threats not visible in existing systems, allowing organizations to make proactive defense adjustments.

Strategies for Managing Third-Party Risk

Dataminr Third Party Risk Management OSINT Blog Embedded Image 2024

Managing third-party risk has become a critical challenge. emphasizes that governance must be approached holistically and highlights the importance of comprehensive third-party risk management. Many organizations rely on vendor surveys, attestations and security ratings, but these provide merely a snapshot in time and are often revisited only during contract negotiations. The NIST CSF 2.0 calls for continuous monitoring—a practice many organizations follow, though it is often limited to identifying trends and anomalies in internal telemetry data, rather than extending to third-party systems where potential risks may go unnoticed. Failing to consistently assess changes in third-party risks leaves organizations vulnerable to attack.

Many contracts require self-reporting, but this relies on the vendor detecting breaches, and there is no direct visibility into third-party systems like there is with internal systems. Understanding where data is stored, how it is handled and whether it is compromised is critical, but organizations often struggle to continuously monitor these systems. Government organizations, in particular, must manage their operations with limited budgets, making it difficult to scale with the growing number of vendors and service providers they need to oversee. Threat actors exploit this by targeting smaller vendors to access larger organizations.

Current strategies rely too heavily on initial vetting and lack sufficient post-contract monitoring. Continuous monitoring is no longer optional—it is essential. Organizations need to assess third-party risks not only at the start of a relationship but also as they evolve over time. This proactive approach is crucial in defending against the ever-changing threat landscape.

Proactively Identifying Risk

Proactively identifying and mitigating risks is essential for Government organizations, particularly as threat actors increasingly leverage publicly available data to plan their attacks. Transparency programs, such as USAspending.gov and city-level open checkbook platforms, while necessary for showing how public funds are used, can inadvertently provide a playbook for illicit actors to target vendors and suppliers involved in Government projects. Public data often becomes the first indicator of an impending breach, giving organizations a narrow window—sometimes just 24 hours—to understand threat actors’ operations and take proactive action.

To shift from reactive to proactive, organizations must enhance capabilities in three critical areas:

Speed is vital for detecting threats in real time. Using AI to examine open source and threat intelligence data helps organizations avoid delays caused by time-consuming searches.
The scope of monitoring must extend beyond traditional sources to deep web forums and dark web sites, evaluating text, images and indicators that mimic official branding.
While real-time information is essential, excessive data can lead to alert fatigue. AI models that filter and tag relevant information enable security teams to focus on the most significant risks.

Proactively addressing third-party risks requires organizations to stay prepared for immediate threats. By leveraging public data, they can strengthen defenses and act before vulnerabilities are exploited.

While self-reporting and AI tools are valuable, organizations must take ownership of their risk management by conducting their own due diligence. The ability to continuously monitor, identify and mitigate risks presents not just a challenge but an opportunity for growth and improvement. Ultimately, it is the organization’s reputation and security at stake, making proactive risk management key to staying ahead of today’s evolving threats.

To learn more about proactive third-party risk management strategies, watch Dataminr’s webinar “.”

̽��Ƶ. is The Trusted Government IT Solutions Provider, supporting Public Sector organizations across Federal, State and Local Government agencies and Education and Healthcare markets. As the Master Government Aggregator for our vendor partners, including Dataminr, we deliver solutions for Geospatial, Cybersecurity, MultiCloud, DevSecOps, Artificial Intelligence, Customer Experience and Engagement, Open Source and more. Working with resellers, systems integrators and consultants, our sales and marketing teams provide industry leading IT products, services and training through hundreds of contract vehicles. Explore the ̽��Ƶ Blog to learn more about the latest trends in Government technology markets and solutions, as well as ̽��Ƶ’s ecosystem of partner thought-leaders.

Leveraging Technology to Align with Environmental, Social and Governance Principles

Posted on by Jennifer Heath and Stephen Pyatt

Sustainability has evolved from a buzzword to a core element of facility management and corporate real estate. Facility managers and real estate leaders have a duty beyond regulations to meet Net Zero targets and reduce buildings’ environmental impact. highlighted that nearly 40% of global CO₂ emissions come from corporate real estate and office buildings, emphasizing the need to reduce emissions and energy use. Despite investments in smart building technologies and clean energy, global energy consumption and CO₂ emissions continue to rise. Embracing technology-driven sustainability helps facility managers optimize energy use, reduce emissions and create efficient, self-regulating buildings that align with Environmental, Social and Governance (ESG) principles.

Strengthening Risk Management with AI

FM:Systems Technology Environmental, Social and Governance Principles Blog Embedded Image 2024

As sustainability becomes a core focus in facility management, advancements in technology are reshaping how facilities are managed beyond environmental goals. Integrating artificial intelligence (AI) and smart building technology is now key to anticipating and responding to extreme events, like hurricanes, floods and earthquakes, adding a new layer to strategic management. The emphasized using building automation to assess facility vulnerabilities and centralized data to enable immediate, coordinated emergency responses.

AI also boosts operational safety and security by enhancing access tracking and visitor management. In emergencies such as fires or security threats, AI-driven solutions quickly identify occupants, aiding efficient evacuations with real-time alerts. These systems also support compliance with data privacy regulations like the General Data Protection Regulation (GDPR), ensuring strict data handling protocols.

Overall, integrating AI and smart building technology strengthens risk management, streamlines emergency responses and maintains data compliance, empowering facility managers to better protect people and assets.

The Innovation of Asset Maintenance in Buildings

While AI-driven risk management strengthens emergency response and security, smart building technologies are redefining day-to-day operations. Traditionally, buildings operated with isolated systems located in basements or ceilings. Connected buildings introduced monitoring for energy use through one or two systems. Smart buildings advance this by integrating building management systems (BMS) with various data sources to enhance performance, aiming for autonomous buildings powered by advanced AI to make decisions, recommend actions and predict failures.

A transformative tool in this field is the digital twin—a precise digital replica of a building and its operations. Internet of Things (IoT) sensors connect digital twins to building systems, allowing facility managers to predict system performance, such as HVAC efficiency during temperature spikes. Digital twins analyze real-time data for predictive scheduling and store essential asset documents like Original Equipment Manufacturer (OEM) manuals, accelerating issue resolution and improving efficiency. This shift enables proactive maintenance, reducing downtime and maximizing system availability.

Smart technology automates maintenance to optimize resources. For example, analyzing room bookings can guide maintenance efforts, avoiding unnecessary checks on unused spaces. Flow sensors in restrooms enable maintenance based on usage, saving time and resources. Real-time visualization of performance allows buildings to communicate with managers and prompt adaptive responses. Autonomous buildings can alert managers, suggest solutions and initiate corrective actions.

As facility managers adopt these innovations, focusing on data collection and analysis is crucial for optimizing operations. Transitioning to smart, autonomous buildings revolutionizes maintenance strategies and creates high-performing workplaces. Leveraging data from digital twins and IoT systems enhances decision-making, resource allocation and sustainable building management.

Supporting and Enhancing the Employee Experience

Optimizing facility systems through digital twins and IoT sensors paves the way for more than just operational efficiency. Real-time environmental adjustments support an organization’s most valuable asset: its people. Environmental data has become essential as employees prioritize well-being and productivity, especially after the COVID-19 pandemic underscored the impact of air quality on health. “Cognitive ergonomics” refers to how factors like air quality, lighting and sound affect cognitive abilities. to conduct research into whether working in a “green building” resulted in better cognitive performance than “non-green buildings. Poor air quality is shown to cause fatigue, headaches and decreased focus, impairing productivity. According to the , improving workplace indoor air quality can increase employee productivity by up to $6,500 per person per year.

Inclusivity should also be central to workplace technology. AI-driven accessibility tools, such as text alternatives for signage, text-to-speech in lobbies and automated meeting transcriptions, ensure user-friendly experiences for all. Adhering to standards like the Web Content Accessibility Guidelines (WCAG) establishes sustainable, accessible workplace technology.

Focusing on employee experience helps facilities teams create adaptable, inclusive workspaces that boost well-being and productivity. Leveraging real-time environmental data and accessible technology ensures workplaces remain supportive, sustainable and responsive to employees’ needs.

While real-time adjustments enhance employee well-being and inclusivity, facility managers are also experiencing a broader shift in their roles. This evolution, driven by data and AI, transforms facility management from a reactive approach to proactive and strategic, demonstrating the transformative power of technology. By leveraging these tools, facility managers can align operational strategies with ESG objectives and Net Zero targets, creating workplaces that are sustainable, efficient and supportive of their greatest asset: people.

Watch FM:Systems’ webinar “People, Places, Planet: Leveraging Technology to Integrate ESG into FM Operations” to dive deeper into cutting-edge strategies and best practices that empower facility managers to drive innovation and enhance operational performance.

̽��Ƶ. is The Trusted Government IT Solutions Provider, supporting Public Sector organizations across Federal, State and Local Government agencies and Education and Healthcare markets. As the Master Government Aggregator for our vendor partners, including FM:Systems, we deliver solutions for Geospatial, Cybersecurity, MultiCloud, DevSecOps, Artificial Intelligence, Customer Experience and Engagement, Open Source and more. Working with resellers, systems integrators and consultants, our sales and marketing teams provide industry leading IT products, services and training through hundreds of contract vehicles. Explore the ̽��Ƶ Blog to learn more about the latest trends in Government technology markets and solutions, as well as ̽��Ƶ’s ecosystem of partner thought-leaders.

“Giving Back is in Our DNA”: How AvePoint is Driving Social Change in the Tech Industry

Posted on by Kevin Briggs

(NASDAQ: AVPT) is the global leader in robust data management and governance with over 21,000 customers across the globe, helping them secure their collaboration environments across Microsoft, Google and Salesforce. Using AI, AvePoint enables organizations to modernize their digital workplace and improve data governance, enhancing productivity, collaboration and security. In addition to helping its customers thrive within their digital collaboration systems, AvePoint is dedicated to philanthropy, reflecting a core mission to drive positive change in the technology industry and their communities.

Internal and External Charitable Efforts

AvePoint’s philanthropy efforts reflect the company’s core values of diversity, equity and inclusion (DEI), with a focus on using technology to drive social impact. Recognizing the tech industry’s challenges with underrepresentation, , AvePoint supports groups like Girls Who Code to break stereotypes about women in technology. AvePoint also fosters change within the organization through like AvePoint Veterans, Black AvePoint Excellence, Women in Technology (WIT), Latinx and Queers and Allies (Q&A), all aimed at fostering inclusivity and providing a supportive environment.

AvePoint Driving Social Change in the Tech Industry Blog Embedded Image 2024

Community engagement is integral to AvePoint’s mission, with events designed to blend philanthropy and collaboration. For instance, Black AvePoint Excellence (BAE) hosts an for partners and customers, typically held around Juneteenth. Likewise, during Pride Month, AvePoint’s Queers and Allies group invited a guest speaker to discuss the significance of Pride Month and what the organization could do to be more inclusive and equitable both internally and externally. These events reflect AvePoint’s culture of integrating ongoing education and fostering empathy, so employees can better serve their communities, extending positive change outward.

Beyond internal efforts, AvePoint’s philanthropic events align with Public Sector initiatives by giving back to communities through local charities where events are held. These collaborations not only contribute to community needs but also highlight AvePoint’s commitment to giving back in meaningful, locally impactful ways.

Past contributions include:

At the 2023 National Association of State Technology Directors () Conference, AvePoint hosted a cornhole game, raising $2,500 for the Boston Children’s Hospital.
In 2023, at the in San Diego, California, AvePoint had two surfboards for attendees to decorate that were donated to the Groundswell Community Project.
AvePoint partnered with ̽��Ƶ at NASTD 2024 and held a mini-golf game, donating $5,000 to The Minneapolis Foundation.
Partnering with ̽��Ƶ for the second time, AvePoint hosted another mini-golf challenge at the 2024 Municipal Information Systems Association of California () Conference, raising $3,000 for Patriots and Paws.

AvePoint’s recent partnership with ̽��Ƶ’s Doing Good Team has enhanced these initiatives, particularly by streamlining charity verification and maximizing contributions. By combining resources, AvePoint and ̽��Ƶ can expand their philanthropic impact, support reputable charities and foster community support. AvePoint’s ongoing commitment to diversity, inclusivity and technological advancement drives these charitable efforts, aiming to make a lasting difference in the communities they serve.

A Culture of Support and Service

AvePoint’s philanthropic efforts are deeply influenced by CEO, Dr. Tianyi Jiang, who has prioritized giving back to the technology community throughout the company’s 23-year history. This commitment to social responsibility is exemplified by initiatives like a to mentor the next generation of engineers and entrepreneurs. This leadership-driven ethos resonates throughout the company, promoting charitable engagement at both organizational and individual levels, across the U.S. and globally.

Beyond organized company initiatives, AvePoint encourages employees to pursue their own charitable passions with a donation matching program to support causes that resonate personally with team members. Employees are also empowered to volunteer, with flexibility to balance work and service. AvePoint’s support for these independent initiatives illustrates how the company’s culture of giving is woven into its fabric, encouraging employees to contribute both professionally and personally.

AvePoint’s culture of giving is grounded in values that empower employees to engage in meaningful initiatives, both through company-supported efforts and personal causes. Leadership’s passion for community impact inspires employees at all levels to pursue organized and independent philanthropic efforts, always met with AvePoint’s encouragement and resources. As seen in examples across the organization, this culture of service is more than a formal policy—it is embedded in the company’s DNA, guiding AvePoint’s commitment to making a positive difference within and beyond the technology industry.

Explore the AvePoint culture of giving back on , and learn more about how the company supports the Public Sector with our award winning technology .

Exploring the Future of Healthcare with Generative AI

Posted on by Linda Chen

Artificial intelligence (AI) is an active field of research and development with numerous applications. Generative AI, a newer technique, focuses on creating content—learning from large datasets to generate new text, images and other outputs. In 2024, many healthcare organizations embrace generative AI, particularly in creating chatbots. Chatbots, which facilitate human-computer interactions, have existed for a while, but generative AI now enables more natural, conversational exchanges, closely mimicking human interactions. Generative AI is not a short-term investment or a passing trend, this is a decade-long effort that will continue to evolve as more organizations adopt it.

Leveraging Generative AI

When implementing generative AI, healthcare organizations should consider areas to invest in, such as employee productivity or supporting healthcare providers in patient care.

Key factors to consider when leveraging generative AI:

Use case identification: Identify a challenge that generative AI can solve, but do not assume it will address all problems. Evaluate varying levels of burden reduction across use cases to determine its value.
Data: Ensure enough data is available for generative AI to provide better services. Identify inefficiencies in manual tasks and ensure data compliance, as AI results depend on learning from data.
Responsible AI: Verify that the solution follows responsible AI guidelines and Federal recommendations. Focus on accuracy, addressing hallucinations where incorrect information is provided such as responses that are grammatically correct but do not make sense or are outdated.
Total cost of ownership: Generative AI is expensive, especially regarding hardware consumption. Consider if the same problem can be solved with more optimized models, reducing the need for costly hardware.

Harnessing LLMs for Healthcare

John Snow Labs Healthcare with Generative AI Blog Embedded Image 2024

Natural language processing (NLP) has advanced significantly in recent decades, heavily relying on AI to process language. Machine learning, a core concept of AI, enables computers to learn from data using algorithms and draw independent conclusions. Large language models (LLMs) combine NLP, generative AI and machine learning to generate text from vast language datasets. LLMs support various areas in healthcare, including operational efficiency, patient care, clinical decision support and patient engagement post-discharge. AI is particularly helpful in processing large amounts of structured and unstructured data, which often goes unused.

When implementing AI in healthcare, responsible AI and data compliance are crucial. Robustness refers to how well models handle common errors like typos in healthcare documentation, ensuring they can accurately interpret how providers write and speak.

Fairness, especially in addressing biases related to age, origin or ethnicity, is also critical. Any AI model must avoid discrimination; for instance, if a model’s accuracy for female patients is lower than for males, the bias must be addressed. Coverage ensures the model understands key concepts even when phrasing changes.

Data leakage is another concern. If training data is poorly partitioned, it can lead to overfitting, where the model “learns” answers instead of predicting outcomes from historical data. Leakage can also expose personal information during training, raising privacy issues.

LLMs are often expensive, but healthcare-specific models outperform general-purpose ones in efficiency and optimization. For example, healthcare-specific models have shown better results than GPT-3.5 and GPT-4 in tasks like ICD-10 extraction and de-identification. Each model offers different accuracy and performance depending on the use case. Organizations must decide whether a pre-trained model or one trained using zero-shot learning is more suitable.

Buy Versus Build

When it comes to the “buy versus build” decision, the advantage of buying is the decreased time to production compared to building from scratch. Leveraging a task-specific medical LLM that a provider has already developed costs a healthcare organization about 10 times less than building their solution. While some staff will still be needed for DevOps to manage, maintain and deploy the infrastructure, overall staffing requirements are much lower than if building from the ground up.

Even after launching, staffing requirements are not expected to decrease. LLMs continuously evolve, requiring updates and feature enhancements. While in production, software maintenance and support costs are significantly lower—about 20 times less—than trying to train and maintain a model independently. Many organizations that build their healthcare model quickly realize training is extremely costly in terms of hardware, software and staffing.

Optimizing the Future of Healthcare

When deciding on healthcare AI solutions, especially with the rise of generative AI, every healthcare organization should assess where to begin by identifying their pain points. They must ensure they have the data required to train AI models to provide accurate insights. Healthcare AI is not just about choosing software solutions; it is about considering the total cost of ownership for both software and hardware. While hardware costs are expected to decrease, running LLMs remains a costly endeavor. If organizations can use more optimized machine learning models for specific healthcare purposes instead of LLMs, it is worth considering from a cost perspective.

Learn how to implement secure, efficient and compliant AI solutions while reducing costs and improving accuracy in healthcare applications in John Snow Labs’ webinar “.”

Discover how can transform healthcare by providing real-time, accurate and compliant information to improve patient care and streamline operations.

Highlights from the SANS Government Security Forum on Zero Trust, CMMC Compliance and AI

Posted on by Steve Jacyna

̽��Ƶoration, a leader in Government IT solutions, partnered with the SANS Institute for the fourth year in a row to host the . The event gathered cybersecurity professionals and Public Sector leaders to address evolving cyber threats facing Government agencies. Experts led discussions on key topics, including Zero Trust implementation, achieving Cybersecurity Maturity Model Certification (CMMC) compliance and harnessing artificial intelligence (AI). This blog highlights key takeaways from three of the six sessions surrounding these imperative industry topics, providing actionable insights to strengthen cybersecurity defenses in today’s digital landscape. During the event a visual artist Ashton Rodenhiser summarized the sessions which are featured in this blog.

̽��Ƶ SANS Government Security Solutions Forum Blog Zero Trust Image 2024

Zero Trust Implementation

During the session “Zero Trust Implementation Strategies,” experts explored the growing challenges security professionals face with emerging technologies and provided key insights into building a robust Zero Trust framework.

As new technologies rapidly emerge, security professionals face increasing challenges in keeping pace, especially with the integration of on-prem environments and the cloud. A key principle of Zero Trust is the enforcement of least privilege policies, which requires a shift in how identity management is applied. This begins with strong governance to ensure the accuracy and reliability of policies and attributes.

Building a comprehensive security framework also involves implementing contextual authorization through micro-segmentation, considering factors like device, location and time to create a robust protective barrier. Furthermore, integrating identity management with Endpoint Detection and Response (EDR) tools is becoming increasingly important for tracking authorized processes and addressing the extended presence of threat actors who exploit admin identities to execute malware.

One of the biggest challenges in managing security policies is their complexity. Many security policies lack human readability due to their intricate structure, making automation essential for managing actions and enforcing compliance. The National Security Administration’s (NSA) recent Zero Trust guide emphasizes automation as a key pillar, highlighting its importance in responding to data flow deviations and maintaining security.

Despite the advanced systems in place, human error continues to be a major vulnerability. Employees can unknowingly compromise security through phishing attacks or by interacting with malicious links. To mitigate this, organizations must prioritize improving employee awareness and addressing the human factor as a critical component of cybersecurity.

Explore how ̽��Ƶ’s Zero Trust portfolio can help Government implement a comprehensive Zero Trust strategy, strengthening organization’s security and protecting critical assets.

̽��Ƶ SANS Government Security Solutions Forum Blog CMMC Image 2024

Achieving CMMC Compliance

The session “Navigating Supply Chain Security and CMMC Compliance” provided valuable insights into the upcoming implementation of the CMMC framework and its implications for Defense Industrial Base (DIB) organizations. This certification will ensure that DIB organizations meet stringent cybersecurity standards through third-party assessments and will soon be mandatory for both prime contractors and subcontractors working with the Department of Defense (DoD).

CMMC consists of multiple certification levels, with Level 1 covering basic practices for Federal Contract Information (FCI) and Level 2 addressing 110 practices based on NIST 800-171, extending to around 320 actions. To prepare, organizations should work with Registered Practitioner Organizations (RPOs) to assess their readiness. These RPOs employ Certified CMMC Professionals (CCPs) and Certified CMMC Assessors (CCAs), who are trained and certified by the Cybersecurity Assessor and Instructor Certification Organization (CAICO), a subsidiary of Cyber AB, which oversees the curriculum and training programs.

After preparation, organizations will undergo an official assessment by a CMMC Third-Party Assessment Organization (C3PAO), which hires CCPs and CCAs to evaluate the cybersecurity measures in place. As the CMMC rule takes effect, organizations must ensure they work with certified professionals listed on the Cyber AB marketplace, as uncertified entities will not be recognized by the DoD.

Given the complexity of CMMC and the fact that preparation for certification can take at least six months, organizations are encouraged to start early to meet the new requirements.

̽��Ƶ is proud to be part of the CMMC ecosystem, with around 800 employees focused on cybersecurity and partnerships with over 150 vendors. By closely tracking policies and industry trends, ̽��Ƶ aligns customer needs with relevant technologies, promoting “better together” integrations to maximize the value of existing investments. ̽��Ƶ works with vendors that address every CMMC maturity level and capability domain, guiding customers through the complex decision-making process to ensure that they select the most suitable technologies to fill security gaps effectively and efficiently. Explore ̽��Ƶ’s CMMC portfolio.

̽��Ƶ SANS Government Security Solutions Forum Blog AI Image 2024

Harnessing AI

Amid the complexities of cybersecurity, effective threat detection and response are increasingly reliant on advanced technologies like AI. The session “Harnessing AI for Advanced Threat Detection” explored the benefits and risks of integrating AI into security operations, highlighting key strategies for balancing automation with rigorous security practices.

“Advanced threat detection” spans various aspects of security operations, including the development and collection of threat intelligence. AI offers significant benefits in early threat detection, helping organizations quickly identify and respond to malicious activity. However, its use must be approached cautiously across the entire security chain.

With the rise of generative AI, industries are applying AI to automate time-consuming tasks. A key benefit is AI’s ability to condense information quickly. Tasks like threat searching or intelligence analysis, which once took hours, can now be completed in minutes, freeing experts to focus on higher-level tasks. This “toil reduction” is vital, as AI automates routine work and creates immediate efficiencies with minimal effort.

While AI brings advantages, there are inherent risks in implementing AI models and infrastructure. It is crucial to approach AI from two perspectives: using it to enhance security while ensuring the security of AI itself.

Organizations must also consider how they can trust AI-generated information. Trust and validation are essential. Provenance—knowing the source of data and models—is key to building confidence. While AI can handle most of the work, experienced engineers and analysts are still needed to verify and analyze the results so security teams can focus on more complex matters.

The siloed nature of work within security operations may limit intelligence sharing. Maintaining control of input data is critical, especially with public models hosted by technology vendors. If training data enters public models, organizations may compromise sensitive information. In regulated environments, private models offer safer options, allowing companies train AI while retaining control.

When integrating AI into security operations, organizations should build trust by validating each use case, allowing AI to be operationalized while ensuring accuracy. Experimentation is key to identifying where AI can provide a return on investment. However, implementing AI requires careful consideration of security models, AI safety and governance, particularly as organizations scale AI into operations.

Unlock the potential of AI to drive innovation and efficiency in Government organizations with ̽��Ƶ’s AI and machine learning portfolio.

, Federal CTO at SailPoint, and , Security Product Manager at VMRay, led the discussion on Zero Trust. , Interim Executive Director at The Cyber AB, provided guidance on navigating CMMC compliance. , Director of Managed Detection and Response at Uptycs, and , Managing Director of Mandiant Solutions at Google Public Sector, explored the role of AI in advanced threat detection.

Explore more insightful sessions on how Public Sector cybersecurity teams are strengthening their security posture by watching the in partnership with ̽��Ƶ.