Tim Young, principal at Deloitte, and Colin Soutar, senior manager for cyber risk at Deloitte, discuss the Trusted Internet Connections policy, and how changes to it could make cloud more widespread in government.
The Office of Management and Budget wants input on their revision to the Trusted Internet Connections policy. The final version of the policy will give agencies guidance on how to route web traffic and meet the requirements of federal security efforts. Tim Young, principal at Deloitte, says that by updating the policy, agencies should be able to implement more new tech than ever. “Some pockets have looked at [TIC] as an obstacle to widespread cloud adoption. I think that’s a perception issue… so I’m hopeful that as this moves forward, it encourages more agencies to lean in and adopt cloud without any preconceived notions or reservations about the security posture of the service being provided.” Colin Soutar, senior manager for cyber risk at Deloitte, says that the TIC policy is designed to protect only parts of the infrastructure, but they’re the most vulnerable parts. “This is really specific to particular parts of the architecture… The way I think about it is that we’re protecting the single door in a house where all the traffic was flowing. To lean on that metaphor a little more, the whole concept of the walls of the house are falling apart…” Soutar said. “The way this policy is set up, I’m really excited to see where it goes next.”