170 likes | 340 Vues
Geospatial Platform Update June 26, 2014 FGDC Steering Committee Jerry Johnston US Department of the Interior. Geospatial Platform Components. Web Presentation & Collaboration. Release of GeoCONOPS Community Advancement of World Wide Human Geography Data (WWHGD) Working Group Community
E N D
Geospatial Platform UpdateJune 26, 2014FGDC Steering CommitteeJerry JohnstonUS Department of the Interior
Web Presentation & Collaboration • Release of GeoCONOPS Community • Advancement of World Wide Human Geography Data (WWHGD) Working Group Community • Enhancements coming to “trending data” • Viewer application for discovery/mashup in test Working on enhanced / new documentation for CS-W, ArcGIS Online Account, CKAN, Developer Tools, etc.
Search / Catalog • Catalog back end enhancements (Data.govand Geoplatform.gov) • Catalog Service Open Search and Improved Collection Management • Search updates: Improved search within collections • Enhanced capabilities for marking content owned by others for inclusion in a Community
Shared IT and Data Investments • Working on release of new batch of HSIP Public data • Climate Toolkit / Climate Data Initiative • Open Water Data Initiative • ArcGIS Online FISMA A&A issued by USDA
Federal Geospatial Solutions FISMA Strategy • Separate all USDA internal Services and Integrated Development/Mashup Environment (PaaS) into a separate ESRI application, distinct from those that interact with outside cloud services and/or SaaS • Create an ESRI Portal providing services to the public and outside agencies. Some data provided by NITC/ESRI • ATO ESRI SaaS (FIPS 199 Low) ESRI SaaS(1) (FIPS 199 Moderate) ESRI PaaS(2) (FIPS 199 Moderate) ISA • Data Exchange and Security • Governed by Interconnection • Security Agreement and Service • Level Agreement Amazon IaaS NITC PaaS, IaaS (FIPS 199 Moderate) • Amazon Cloud Infrastructure • NITC Cloud Infrastructure • Note – 5 ATO’s are depicted here (Amazon IaaS , ESRI SaaS) and (NITC PaaS , ESRI SaaS (1) and ESRI SaaS (2)) • Note – The NITC Data Center and PaaS environment have existing ATO’s and inheritable controls Stephen Lowe Geospatial Information Officer Office of the Chief Information Officer
System Architecture Stack Application Customer Configured Web Admin App (Org-wide settings, Management) End-User Org Portal (Create maps, Share, Discover) Application Esri Managed ArcGIS Online Application (Portal, Map Services, Tasks, Account Management) Data (Portal, Index, Hosted) OS & Middleware Esri & Cloud Provider Managed Middleware Operating System Infrastructure Cloud Provider Managed Server Infrastructure (Servers, Storage, Racks) Network Infrastructure (Switches, Routers, Cables, SAN) Data Center (Physical facility, UPS, Cooling) Stephen Lowe Geospatial Information Officer Office of the Chief Information Officer • 9
Solution Audits and Accreditations Layers of Responsibility & Assurance Agency FISMA Web App Consumption ArcGIS Management Web Server & DB software • AGOL SaaS • FISMA Low • (USDA) • SafeHarbor • (TRUSTe) • Tier 1 & 2 Incident Management • SSAE16 Esri Operating system Instance Security Management Hypervisor Cloud Provider ISO 27001 SSAE16FedRAMP Mod Cloud Provider Physical Stephen Lowe Geospatial Information Officer Office of the Chief Information Officer
Artifacts Available for Agency Review USDA: ATO-based design, testing and controls documents in CSAM Cloud Infrastructure Provider: SSAE16, ISO27001, FedRAMP Moderate Package Report available from cloud providers under NDA Esri: SSAE16 for Tier 1 & 2 incident management of ArcGIS Online System Security Plan (SSP) – Agency references removed Reports available from Esri under NDA Cloud Security Alliance (CSA) Answers Publically Available Stephen Lowe Geospatial Information Officer Office of the Chief Information Officer • 11
Role of OCIO in POAM Management Stephen Lowe Geospatial Information Officer Office of the Chief Information Officer
Federal Government Implementation Activities Esri AGOL ATO Granted FGDC Steering Committee Esri International UC CIO Council Briefing OMB Briefing • August 2014 • July 2014 • June 2014 • June 2014 • July 2014 • Objective: • Complete review for FISMA Low ATO • Objective: • Communicate achievement, access, benefits of ATO • Objective: • Present Esri product and service support for secure AGOL • Objective: • Provide guidance for enterprise products and services • Objective: • Provide Fed CIO, E-GOV, RMO with framework for shared services • Activity: • - Inventory, test, and document existing AGOL capabilities and competencies • Activity: • - Present summary business case to Committee- Elicit agency participation in tactical implementation workshop • Activity: - Promote benefits model • - Establish common service criteria • - Identify customer development tracks • Activity: • - Explain practitioner tools • - Promote content and templates • - Elicit consultation and training requests • Activity: • - Provide CPIC interpretative framework • - Integrate geospatial as core IT portfolio component • Outcomes: • Impact geospatial brand perception • Outcomes: • Reduce duplication, and customization • Outcomes: • Federal agency secure access to AGOL cloud platform • Outcomes: • Increase rate of adoption • Outcomes: • Uniform customer service quality USDA Policy/Deploy Awareness/Endorse Partner Reuse Geospatial Platform Portfolio Management Stephen Lowe Geospatial Information Officer Office of the Chief Information Officer • 13
Next Steps • Formulate agency partnership agreements • Establish standard operating process for ATO material access/check-in-out/updates • Create requirements gathering template: EPA example • Convene USDA and Agency CISO meeting for Q&A - July • Collect and normalize agency requirements • Establish POAM Mitigation Schedule • Determine deployment strategy and priorities in FY2014 • Publish branding material in various forums • Develop common boilerplate language for OMB business case/project/portfolio stat/etc… Stephen Lowe Geospatial Information Officer Office of the Chief Information Officer
Point of Contact:Stephen.Lowe@ocio.usda.gov202-720-0880 office Stephen Lowe Geospatial Information Officer Office of the Chief Information Officer
National Geospatial Data Assets • Enhanced dataset management capabilities • Implemented NGDA change management capabilities in Platform • Forum user testing • New Theme Leads Community home page features