- FBI CISO Arlette Hart says the U.S. federal government wants to adopt more cloud in order to improve efficiencies.
- But service providers' lack of transparency is making that difficult, she said.
- While large cloud providers like Amazon and Microsoft offer tools that meet the U.S. government's regulations, not every cloud provider does, said Hart.
Hart said the federal government wants to take advantage of the "enormous value" in public cloud infrastructure, but it also needs to ensure greater security to protect important data. Hart said that unlike private companies, the federal government isn't as concerned about money as it is about securing data.
Hart suggested cloud providers be more transparent about their security policies so the government can verify their practices are sufficient for protecting data. That can be challenging, because shifting from an on-premises infrastructure to more cloud workloads means “changing some expectations of what the data's security perimeter looks like and what an agency like the FBI has control over.”