Implementing SaaS Security Guidelines (SS113)

#1719640: Implementing SaaS Security Guidelines (SS113)

Description:	The Cybersecurity and Infrastructure Security Agency (CISA) is proud to offer the awareness webinar, Implementing SaaS Security Guidelines. We are excited to share this information with stakeholders across the Federal enterprise and nationally. This webinar is intended for a non-technical audience and anyone involved in the procurement or development of cloud business applications, delivered through a Software as a Service (SaaS) model including: Cloud architects and engineers, Network architects and engineers, Cybersecurity program managers, and Cybersecurity Analysts. With the increasing use of SaaS applications in Government agencies, and in response to Executive Order 14028 “Improving the Nation’s Cybersecurity”, “CISA in collaboration with the United States Digital Service (USDS) and FedRAMP, developed the Cloud Security Technical Reference Architecture (TRA). This guide will assist agencies as they securely transition to the cloud. In addition, CISA created the Secure Cloud Business Applications (SCuBA) project to provide guidance to address cybersecurity and visibility gaps in FCEB cloud business applications. CISA is proud to present this one-hour webinar introducing strategies to secure SaaS and cloud business applications. This webinar will achieve the following:   Identify and Mitigate Vulnerabilities: Provide knowledge and skills to identify and address cybersecurity challenges in federal cloud business applications, emphasizing a Zero-Trust approach and the integration of various cloud security services. Importance of SCuBA Technical Reference Architecture (TRA) and extensible Visibility Reference Framework (eVRF): Define the background and purpose of the SCuBA project and associated guidelines to secure cloud-based business applications. MITRE ATT&CK Framework: Explain how the MITRE ATT&CK framework is used to characterize threat sources and Tactics, Techniques, and Procedures specific to cloud platforms. Key Guidance for Organizations: Identify specific cloud security guidance and strategies for the implementation of security controls on a SaaS. Knowledge Check: The course includes a brief knowledge check section to reinforce key concepts and takeaways. To fully utilize the features of Webex, please make sure you have the latest version of the Webex desktop or browser application. You can download the necessary updates here: https://www.webex.com/downloads.html
More info:	https://cisa.webex.com/webappng/sites/cisa/meeting/register/bded4f04ab8f411fa3d00c9d750a7892?ticket=4832534b00000005da34356acf67531f1a3f7481c423422bbf926eabae42bb47c62ed3f0772a62ed&timestamp=1768235836217&RGID=r51a6d6454864581270c729244f04f18a&isAutoPopRegisterForm=false

Description:

The Cybersecurity and Infrastructure Security Agency (CISA) is proud to offer the awareness webinar, Implementing SaaS Security Guidelines. We are excited to share this information with stakeholders across the Federal enterprise and nationally.

This webinar is intended for a non-technical audience and anyone involved in the procurement or development of cloud business applications, delivered through a Software as a Service (SaaS) model including: Cloud architects and engineers, Network architects and engineers, Cybersecurity program managers, and Cybersecurity Analysts.

With the increasing use of SaaS applications in Government agencies, and in response to Executive Order 14028 “Improving the Nation’s Cybersecurity”, “CISA in collaboration with the United States Digital Service (USDS) and FedRAMP, developed the Cloud Security Technical Reference Architecture (TRA). This guide will assist agencies as they securely transition to the cloud. In addition, CISA created the Secure Cloud Business Applications (SCuBA) project to provide guidance to address cybersecurity and visibility gaps in FCEB cloud business applications. CISA is proud to present this one-hour webinar introducing strategies to secure SaaS and cloud business applications.

This webinar will achieve the following:  

Identify and Mitigate Vulnerabilities: Provide knowledge and skills to identify and address cybersecurity challenges in federal cloud business applications, emphasizing a Zero-Trust approach and the integration of various cloud security services.

Importance of SCuBA Technical Reference Architecture (TRA) and extensible Visibility Reference Framework (eVRF): Define the background and purpose of the SCuBA project and associated guidelines to secure cloud-based business applications.

MITRE ATT&CK Framework: Explain how the MITRE ATT&CK framework is used to characterize threat sources and Tactics, Techniques, and Procedures specific to cloud platforms.

Key Guidance for Organizations: Identify specific cloud security guidance and strategies for the implementation of security controls on a SaaS.

Knowledge Check: The course includes a brief knowledge check section to reinforce key concepts and takeaways.

To fully utilize the features of Webex, please make sure you have the latest version of the Webex desktop or browser application. You can download the necessary updates here: https://www.webex.com/downloads.html

More info:

https://cisa.webex.com/webappng/sites/cisa/meeting/register/bded4f04ab8f411fa3d00c9d750a7892?ticket=4832534b00000005da34356acf67531f1a3f7481c423422bbf926eabae42bb47c62ed3f0772a62ed&timestamp=1768235836217&RGID=r51a6d6454864581270c729244f04f18a&isAutoPopRegisterForm=false

Date added	Jan. 12, 2026, 5:39 p.m.
Source	Webex
Subjects	PodCasts / Webcast / Webinar / eSummit / Virtual Event etc. SAAS / Software as a service Security Guidelines / Checklists etc US Cybersecurity and Infrastructure Security Agency (CISA) - Previously US-CERT
Venue	Feb. 10, 2026, midnight - Feb. 10, 2026, midnight