2023 Federal Construction Forum

© 2023 Kahua. All rights reserved. IT Security • Consider access and authentication protocols for internal and external users • Ensure options for connection with other systems (commercial and government) are included in initial Authority to Operate (ATO) architecture • Having an engaged and rational ISSO/IT security POC is really important • Understand what is covered within a FedRAMP ATO and what additional controls need to be addressed at the agency level / with a separate agency ATO • Consider ATO timelines and the impact on testing and integration work • Consider resource requirements to address security on multiple levels

• Slide 1: GSA Case Study
• Slide 2: Background and History
• Slide 3: Why did GSA select Kahua?
• Slide 4
• Slide 5: Aggressive Timeline
• Slide 6: Configuration Phase
• Slide 7: Consolidation
• Slide 8: The More Consolidation = Better Data
• Slide 9: The More Consolidation = User Experience
• Slide 10: Best Practices and Lessons Learned
• Slide 11: Curve Balls
• Slide 12: Leadership Engagement
• Slide 13: GSA Team
• Slide 14: Change Management
• Slide 15: Communications
• Slide 16: Regional Participation
• Slide 17: Communications - Example
• Slide 18: Branding Examples
• Slide 19: Training and Support
• Slide 20
• Slide 21
• Slide 22: Support Model
• Slide 23: Data and Document Integrations
• Slide 24
• Slide 25: Contracts and Funding
• Slide 26: IT Infrastructure
• Slide 27: IT Security
• Slide 28: Migration of Projects
• Slide 29: GSA Case Study