Palo Alto Networks Cortex Cloud™ — Unified Efficiency, Now with Dual FedRAMP Authority

Posted on by Eric Trexler

In a testament to its commitment to secured and streamlined cloud security, Palo Alto Networks Cortex Cloud™ has already achieved FedRAMP High and Moderate authorizations since launching in February 2025. This significant milestone positions Cortex Cloud as the only CNAPP in the FedRAMP Marketplace holding both High and Moderate designations, underscoring its unique ability to cater to the diverse security needs of the U.S. Government.

The Federal Risk and Authorization Management Program (FedRAMP) is the Government’s rigorous standard for assessing, authorizing and continuously monitoring cloud services. By achieving both High and Moderate authorizations, Cortex Cloud demonstrates its adherence to stringent security controls, paving the way for Federal agencies to confidently adopt its innovative platform.

Unlocking Efficiency Through a Unified Security Platform

At a time when Government agencies are prioritizing modernization and efficiency, Cortex Cloud offers a powerful, unified solution. As the next generation of Prisma® Cloud, it transcends traditional, siloed security tools by integrating best-in-class cloud detection and response (CDR) with industry-leading, cloud-native application protection platform (CNAPP) capabilities.

This platform-centric approach delivers measurable benefits:

Streamlined Procurement – By choosing Cortex Cloud with FedRAMP High authorization to secure your environment, agencies can bypass the complexities and delays of redundant security assessments.
Reduced Complexity and Risk – By integrating security across the entire cloud lifecycle (from code to cloud to SOC) Cortex Cloud eliminates the operational overhead and potential vulnerabilities associated with managing disparate security tools.
Enhanced Operational Efficiency – The unified platform provides comprehensive visibility and context, enabling security teams to prioritize risks effectively, automate responses and reduce the mean time to respond (MTTR) to threats.
Intelligent Risk Reduction – Cortex Cloud’s cloud posture security capabilities offer agentless visibility and intelligently group-related issues, empowering security teams to focus on the most critical risks with minimal effort.
Proactive Threat Prevention – Stop attacks in real time with cloud detection and response (CDR), maintaining the integrity and availability of Government systems, as breaches are prevented before impacting mission-critical operations.
Securing the Application Lifecycle – Cortex Cloud’s application security features enable agencies to identify and remediate vulnerabilities in the software supply chain, preventing risks from ever reaching production.

Meeting Diverse Government Needs with a Single, Powerful Platform

The dual FedRAMP High and Moderate authorizations empower Cortex Cloud to address a wide spectrum of Government requirements:

FedRAMP High – For the most sensitive, unclassified data where compromise could severely impact national security, economic stability or public safety. Cortex Cloud meets over 400 rigorous security controls for mission-critical applications.
FedRAMP Moderate – For Federal information where loss of confidentiality, integrity or availability would have serious adverse effects. Cortex Cloud adheres to over 300 security controls, suitable for a broad range of data, including PII.

Furthermore, Cortex Cloud’s GovRAMP High and Moderate certifications highlight its commitment to serving State and Local Governments with equally robust and efficient cloud security solutions.

Driving Productivity and Cost Savings

The U.S. Government’s focus on maximizing efficiency and productivity aligns perfectly with the benefits offered by Cortex Cloud’s unified platform.

By consolidating security functions and providing intelligent insights, Cortex Cloud helps agencies:

Optimize Resources – Security teams can operate more efficiently, focusing on strategic initiatives rather than managing a complex web of point solutions.
Improve Security Outcomes – Comprehensive visibility and integrated threat intelligence lead to a stronger security posture and reduced risk of costly breaches.
Accelerate Cloud Adoption – Agencies can confidently embrace the scalability and flexibility of the cloud while maintaining the highest security standards.

Cortex Cloud’s FedRAMP High and Moderate authorizations are more than just certifications; they represent a commitment to providing Government agencies with an efficient, unified and highly secure cloud security platform. By streamlining operations, reducing complexity and delivering comprehensive protection, Cortex Cloud empowers the U.S. Government to achieve its modernization goals while safeguarding its most critical assets.

Secured in America. Built for Government.

Headquartered in California, Palo Alto Networks proudly celebrates two decades of cybersecurity innovation and leadership. Across the United States, we employ more than 8,800 people in 49 states with physical offices in California, New York, Texas and Virginia. Championing American production excellence, we assemble all of our hardware firewalls in the United States, with our primary assembly and fulfillment center located in Texas. With over $1.8 billion in annual R&D, Palo Alto Networks is driving continuous innovation to maintain American technological leadership and excellence.

Learn more about our commitment to serve Federal organizations as the Government’s cybersecurity partner of choice.

Carahsoft Technology Corp. is The Trusted Government IT Solutions Provider, supporting Public Sector organizations across Federal, State and Local Government agencies and Education and Healthcare markets. As the Master Government Aggregator for our vendor partners, including Palo Alto Networks, we deliver solutions for Geospatial, Cybersecurity, MultiCloud, DevSecOps, Artificial Intelligence, Customer Experience and Engagement, Open Source and more. Working with resellers, systems integrators and consultants, our sales and marketing teams provide industry leading IT products, services and training through hundreds of contract vehicles. Explore the Carahsoft Blog to learn more about the latest trends in Government technology markets and solutions, as well as Carahsoft’s ecosystem of partner thought-leaders.

Culture as a Catalyst: How Internal Culture Drives External Impact

Posted on by Tiffany Goddard

At the 2025 Customer Experience (CX) and Engagement Summit, thought-leaders and Government officials from the U.S. Department of Health and Human Services (HHS), the U.S. Air Force, GovExec and more discussed the many ways Government agencies can use company culture and technology to build trust and reach customers.

Carahsoft and our partners are committed to helping agencies find the right technology for their CX solutions.

People, not Products

Customers have come to expect seamless, digital-first experiences in service delivery. In the session “Creating a Customer-First Culture,” Dwight Chamberlain, the Area Vice President at Docusign, and Marcy Katz Jacobs, the Chief Digital Experience Officer for the State of Maryland, attest that Government can close current service gaps by reframing business models to prioritize people, not products. Traditionally, Government modernization efforts have prioritized systems and software over service design. By addressing communication barriers instead, teams can identify service gaps and engage more effectively with customers.

Fragmentation is another barrier to exemplary service. “It’s our job to connect the dots behind the scenes,” Jacobs states. “Showing teams that their silo is part of a bigger picture helps them align around a common mission.” Maryland’s new analytics platform, Analytics.Maryland.Gov, is one tool Jacobs’ team is using to better understand public demand and find a unified goal. It tracks critical data, such as where people are going on state websites, how long they are staying and where they drop off, which helps determine which services to focus improvement efforts on. “We have so many ways to listen — emails, phone calls, escalations, bad form data — but we haven’t been using that feedback to inform what we fix next,” Jacobs shares. “Now we are.” The combination of user data, internal feedback and data analysis enable Maryland to go beyond digitizing Government, humanizing services to be more intuitive, transparent and trusted.

Driving Transformation through Service Delivery

While new technology is vital to achieving maximized efficiency, technology alone cannot drive transformation. In the session “The Employee Experience: A Foundation for CX,” speakers Colt Whitall, the former Chief Experience Officer of the U.S. Air Force and founder of Bravo 17, and Karl Hermann, solutions engineering manager for State, Local and Education (SLED) and Federal Government at Zoom, discussed how meaningful change comes from connecting internal experience with mission outcomes. Hermann attests that technology should work for its users, not the other way around. In the rush to modernize, the day-to-day reality of user experience can be easily overlooked. Hermann watches employees juggle several different tools for business operations. By consolidating these tools into one platform, he found that agencies can reduce confusion, boost productivity and make services more accessible.

Whitall explained that when internal tools fail, service delivery comes to a halt as well. Whitall encouraged his team to shift their mindset to treat technology issues like product issues. They created a ‘Voice of the Customer’ program that monitors digital experience and collects data on performance and user perception. “That way, we can start to ascertain where service levels are impacting the mission and where they’re impacting productivity,” Whitall explains. By mapping technical pain points to real-world productivity loss, agencies can make the business case for faster technology replacements, better support and smarter investments.

Improving Workflows with Cross-Agency Communication

In the session “Overcoming Organizational Silos,” speakers Alana M. Burman, the Director of Policy, Intergovernmental Affairs & Mediation at the Pennsylvania Human Relations Commission, and Jamison Bruan, the Vice President of the Global Public Sector at Salesforce, discussed overcoming silos to service delivery. Today’s infrastructure creates silos that lead to communication and service gaps. “Communication should have no hierarchy. Everyone in the organization needs information at the speed of relevance,” Braun says. Shifting policy to support cross-departmental communication is the key to encouraging staff to take a more collaborative role, ultimately improving agency efficiency. Technology can also aid in unifying Government agencies by enabling the quick and efficient sharing of information across departments. Juggling multiple systems can lead to confusion and slower workflows, while one technology platform with omnichannel capabilities allows employees to effectively communicate, collaborate and document. Burman concludes that such systems are “revolutionary to the way that Government works and the way we think about how our public interacts with Government.”

The Top 6 Leadership Qualities for Success

At the session “Harnessing Your Inner Leader: Empowering a CX Culture,” speakers Avery Muse, the Sr. Founder and CEO of the Muse Group, as well as the Former Executive Director of the Office of IT Operations at the HHS, Amanda Chavez, the Vice President of CX at Qualtrics, and Anna Pettyjohn, the EVP of Product and Strategy at GovExec, discussed the best leadership qualities.

Here are their top 6:

Leadership begins with initiative, not a title.

Leadership is not limited to executives or managers. Rather, a leader is one that acts to drive change when they see a need.

Curiosity and authenticity

Curiosity shapes the way leaders build relationships, solve problems and bring others into CX work. Rather than emulating others, leaders should build on their own authentic, unique strengths.

Small ideas scale faster with the right community

Change begins by working with passionate, knowledgeable people who can uplift teams. For some communities, agencies will need to use non-traditional methods to gather feedback, to ensure they are meeting the holistic needs of their customer base.

Measure the experience, not just the output

Meaningful metrics, such as employee productivity and complete resolution of support issues, help measure how well a service works.

The language of CX is evolving

As the Government invests in new CX initiatives, leaders must also rethink the terminology itself. Customers expand beyond the public, including employees and internal stakeholders. With a clear definition, agencies can target solutions towards an inclusive customer base.

The future is ‘total experience’

When agencies lose time on outdated systems, they lose opportunities to connect with and serve the public. Muse recommends agencies rebuild for what he calls a “total experience,” a strategy that aims to connect Government services, employee strategy and customer desires. With the combination of relevant technology and a strategy-based, unified plan, agencies can reach their maximum potential.

Ultimately, by unifying technology, CX-focused leadership and service delivery, agencies can enhance their services while fostering trust and inclusion with the customers they serve.

To learn more about the topics discussed at the 2025 CX & Engagement Summit, view the session recordings, on-demand. To learn more about the technologies that can help meet your agency’s mission statement, take our Carahsoft’s CX Buyer’s Guide Quiz, or visit our CX and engagement solutions portfolio.  

More Coverage, Less Overhead: Rethinking Road Inspection Costs with AI-Driven Insights

Posted on by Mark Pittman

Trying to make your maintenance dollars go further without cutting corners on insight, safety or service?

If so, you’re not alone. With budgets often stretched and infrastructure demands growing, many agencies are reexamining how to get the most value out of every maintenance dollar. That’s why many are rethinking expensive, labor-intensive field inspections and turning to smarter, more cost-effective alternatives.

AI-analyzed dashcam imagery from commercial and fleet vehicles gives teams near real-time, visual insights into road conditions without the typical overhead. By using what’s already on the road, agencies can cut spending while getting even better data on pavement conditions, signage, lane markings and hazards.

Smarter Inspections. Real Savings.

Manual inspections can cost anywhere from $100 to $200 per mile, depending on the method and crew required. When you factor in vehicle costs, staffing, scheduling and delays, those expenses scale fast, especially for agencies managing thousands of miles.

AI-powered visual intelligence can reduce up to 90% of the manual inspections traditionally required for roadway condition assessment. That’s a considerable savings in time and money. In Hawaii, automated analysis of guardrails, striping and debris saved the state DOT over $900,000 by eliminating unnecessary field visits and allowing more strategic deployment of maintenance dollars.

With continuous AI-driven assessments, inspections shift from rigid schedules to condition-based decision-making. This allows agencies to focus their limited resources where the data shows they’re actually needed, maximizing impact while minimizing waste.

Lower Operational Strain, Lower Spend

Reducing fieldwork doesn’t just save time, it cuts expenses across the board. Fewer field deployments mean lower fuel costs, less vehicle wear and fewer overtime hours.

Instead of organizing additional field inspections, agencies can rely on regularly updated insights coming from existing vehicle networks. This reduces the need to expand teams or invest in specialized equipment to keep up with inspections. It also supports a safer inspection process by reducing risk exposure for field crews.

Better visibility leads to more accurate budgeting. Instead of flying blind—or relying on complaints—you can plan maintenance with precision, stretch your resources and avoid surprise repairs that blow up budgets.

Faster Recovery, Lower Emergency Costs

Storms, floods, and other disruptions can incur urgent, unexpected expenses. But quick, AI-enabled visual assessments can help reduce emergency costs.

Agencies can assess road damage without dispatching field teams immediately, saving time and protecting crews. Infrastructure inspections are evolving to include tools like Google Street View, providing a reliable “before” snapshot. Combined with dashcam imagery for the “after,” agencies can clearly analyze damage and document changes over time. That early insight supports faster funding requests and avoids the cost of blanket response measures that may not be necessary.

With centralized, visual data that’s easy to share, teams can streamline contractor coordination, skip redundant inspections and focus their limited funds where they’ll have the most impact.

Rewriting the Cost Equation

Road inspections don’t have to drain your budget. With AI-analyzed dashcam data, agencies are expanding visibility across their networks while significantly cutting costs.

The real value lies in shifting from reactive to efficient, insight-driven decision-making. From daily maintenance to emergency recovery, this model is helping public teams rethink how, and how much, they spend on inspections.

For any agency trying to do more with the same—or even less—budget, it’s time to rethink how inspections are conducted.

Watch the on-demand webinar to see how agencies are using AI-driven insights to reduce inspection costs while improving road safety.

From Noise to Impact: How Agencies Can Build Real AI Use Cases

Posted on by Kailey Silverberg

Insights from Federal data, legal and technology leaders on turning AI potential into mission-driven action

Everyone’s talking about AI. But in Government, where budgets are tight, oversight is strict and the stakes are high, talk isn’t enough. Agencies need AI use cases that solve real problems, not just generate headlines.

At a recent panel discussion in D.C. hosted by ZL Tech and Carahsoft, experts from data, legal and tech roles shared their insights on how Federal agencies can move from experimentation to impact. Their message was clear: success with AI starts with governance, strategy and the right people at the table.

1. Want Real AI? Start at the Top

The biggest challenge agencies face? Starting small and remaining siloed.

“Start at the highest, most strategic level of the organization,” said Matthew Versaggi, a White House Presidential Innovation Fellow for AI. “Don’t begin in your own department, by then it’s too narrow. Instead, ask: what’s the most impactful agency-wide use case we can build toward?”

The panelists emphasized that departmental pain points might improve workflows, but agency-wide pain points tied to the mission are where AI can truly move the needle.

“Without a structured process, you’re just chasing your tail,” added Kon Leong, CEO of ZL Tech. “Start small, but make sure your experiment is scalable and aligned to long-term strategy.”

2. Governance Isn’t a Roadblock. It’s the Roadmap.

AI can’t succeed without trust in the data. And trust depends on governance.

“Governance is accountability,” said Leong. “It’s what separates scalable, sustainable innovation from science experiments.”

Jason Baron, a professor and former senior Government attorney, described governance as a mesh, not a silo: “True governance links your CISO, CIO, records officers, FOIA leads, legal teams—all under shared policy and ownership. We used to work in silos. That has to end.”

And as Matthew pointed out, AI governance isn’t a blocker, it’s an enabler: “AI governance becomes the mechanism for sustaining innovation. If we’re going to compete globally, we have to embrace it.”

3. Talk to Your CDO—Yes, You Have One

One of the most actionable takeaways: if you’re not already talking to your Chief Data Officer, you’re behind.

“Every agency has a CDO,” said Jason. “Go find them. Hopefully you like them. Have a conversation.”

CDOs are uniquely positioned to bridge mission needs with data access and policy. As one attendee noted during the session, “Awareness is the first step. Records and governance leaders are finally getting a seat at the table.”

It’s no longer enough for legal, records and privacy teams to operate in isolation. Building AI responsibly requires alignment—and that starts with the CDO.

4. Unstructured Data Is the Game-Changer

Structured data, like spreadsheets and databases, has been the traditional foundation for reporting and analytics. But that’s not where the majority of Government data lives.

“Unstructured data is radioactive,” said Leong. “That’s where every crisis lives. And now, it’s center stage in AI.”

Unstructured data includes everything from emails and PDFs to file shares, chat logs and documents. It makes up more than 80% of enterprise data, yet many agencies lack visibility or control over it.

Jason gave a real-world Federal perspective: “As a records guy, I’d take out my watch and wait to see how long it took vendors to say ‘FOIA’ or ‘FedRAMP.’ If they don’t understand the challenges around Federal unstructured data, they’re not serious.”

5. Use the Impact vs. Effort Matrix to Prioritize Wisely

With hundreds of possible AI use cases, how can agencies filter out distractions and find the ones worth pursuing?

Panelists recommended the Impact vs. Effort Matrix—a simple yet powerful tool to map use cases by how much effort they require and how much impact they’ll deliver.

What Is the Impact vs. Effort Matrix?

This tool helps agencies focus on what’s worth doing, especially when time, talent and resources are limited. Each AI idea gets placed into one of four categories:

Quick Wins (High Impact, Low Effort): Prioritize these immediately.
Major Projects (High Impact, High Effort): Worth the investment—plan carefully.
Fill-Ins (Low Impact, Low Effort): Do when time permits.
Thankless Tasks (Low Impact, High Effort): Avoid or minimize these.

“We see hundreds of AI ideas across agencies,” one panelist said. “But when you apply the matrix, only a handful have real traction. The juice has to be worth the squeeze.”

The matrix helps filter noise and ensure teams are spending time on the projects most likely to scale, succeed and support the mission.

6. Build with Scale in Mind, Even If You Start Small

AI is experimental. Not every idea will pan out. But successful projects need a path to grow from day one.

“Do a small test with an enterprise mindset,” said Matthew. “Security, governance and scale should be built in from the start.”

Leong agreed: “Get your data ducks in a row, and everything else will follow. You don’t want to make long-term bets on projects that were never designed to scale.”

7. Custom or Off-the-Shelf? Choose Based on Complexity

Should agencies build custom platforms or adapt off-the-shelf tools? It depends.

“Don’t overpay for generic tools,” said Matthew. “But for deep, high-end capabilities, you may need in-house builds—just know the tradeoffs.”

The more specialized the use case, the more likely a tailored solution is required. But whether buying or building, the panel emphasized the importance of involving records officers, legal teams and SMEs early—not just the CIO chasing the next shiny object.

Final Thought: The Data Is There. The Champions Are Too.

The core message of the session? Agencies already have the data—and they have the people who care about getting it right.

What’s missing is coordination, prioritization and a strong governance foundation.

Start with strategy. Talk to your CDO. Use the matrix. Build with intent.

Carahsoft Technology Corp. is The Trusted Government IT Solutions Provider, supporting Public Sector organizations across Federal, State and Local Government agencies and Education and Healthcare markets. As the Master Government Aggregator for our vendor partners, including ZL Tech, we deliver solutions for Geospatial, Cybersecurity, MultiCloud, DevSecOps, Artificial Intelligence, Customer Experience and Engagement, Open Source and more. Working with resellers, systems integrators and consultants, our sales and marketing teams provide industry leading IT products, services and training through hundreds of contract vehicles. Explore the Carahsoft Blog to learn more about the latest trends in Government technology markets and solutions, as well as Carahsoft’s ecosystem of partner thought-leaders.

The Tech Behind Trust: Enabling Better CX Through Automation, Cloud and Cybersecurity

Posted on by Tiffany Goddard

Cybersecurity, automation, data analytics and the cloud can improve customer experience (CX) and increase trust in Public Sector institutions. At the 2025 CX and Engagement Summit, thought leaders and Government officials from the U.S. Department of State, the Department of Labor, the U.S. Coast Guard and more, discussed how technology and CX go hand in hand.

As Public institutions work to strengthen their CX, Carahsoft and our partners, such as Box, are here to help guide and support their journey.  

Automation and Analytics for CX

Data analytics can be critical to improving CX and overall agency and organization efficiency. In the session “Leveraging Automation and Analytics to Enhance Customer Experience,” speakers Manny Medrano, the Director of Cybersecurity Monitoring and Operations at the U.S. Department of State, Dan Bauer, Former Chief Technology Officer (CTO) at the U.S. Department of State and Angy Peterson, the Vice President for Experience Services at Granicus, discussed the many uses of automation and data analytics. Medrano recommends keeping in mind key questions, such as “how is this improving our operations?” and “are we delivering on our mission?” With these framework questions in mind, agencies can better connect data to everyday processes and fulfill day-to-day organizational goals.

Automation can be used to pull more data to improve accuracy and trust in Public systems. Bauer explains that with automation, agencies and organizations can eliminate manual touchpoints, enabling faster, more accurate service delivery. When paired with analytics, automation helps provide insight into system performance. For example, agencies tend to review feedback surveys for dissatisfied users only. With automated analytics, agencies can gather and review analytics that provide the full emotional and behavioral picture. Leadership can also use analytics to locate process steps that are taking an extraneous amount of time, revealing organizational bottlenecks or gaps. By utilizing data and asking the right questions, organizations can refine technology and processes to improve CX.

Utilizing the Cloud for CX-Focused Integration

Users want services that adapt to them, not the other way around. At the panel “Cloud-Powered Customer Experience,” speakers Sanjay Koyani, the Former Executive Director of IT Operation and Services at the Department of Labor, and Kaitlin Klaum, the Senior Team Manager at Box, discussed meeting customer expectations with cloud technology. User experience (UX) must be a top priority to meet customer expectations that services be quick, easy and relevant. Leveraging the cloud helps agencies deliver on these expectations by enabling integration, automation and smarter use of data.

Replacing legacy systems can be expensive, so Koyani recommends agencies prioritize incremental modernization, allowing old and new systems to coexist where appropriate. Klaum asserts that security must be the starting point for any implementation, especially when onboarding new technology. By adopting Zero Trust frameworks, agencies can ensure information remains protected throughout the modernization process. Vendors play a critical role in this journey, partnering with agencies to onboard technology, solve problems and implement solutions that enhance performance.

Understanding Data Analytics for Mission Success

In the session “Data Analytics: Turning Insights into Impact,” speaker Trang Tran, the Deputy Chief Data Officer for Customer and Border Protection, Dan Allen, the Global Head of Customer Success Digital and Security Solutions at Hewlett Packard, and Captain Daniel Rogers, the Chief Data and Artificial Intelligence Officer of the U.S. Coast Guard, discussed understanding data to ensure optimal employment.

Tran emphasized that tying data to a clear mission statement ensures reliability, efficiency and effectiveness across an organization.

There are a few ways to promote data literacy across an agency:

Educate employees on the purpose of data, so that they can interpret analytics with the agency’s mission statement in mind.

Create an agency data office to support integration and to help teams understand their data and how to use it effectively.

Build collaborative tools that improve decision-making and make data actionable items.

Share data across agencies, like the Department of Health and Human Services (HHS) and the Department of Justice (DOJ), to enhance efficiency and effectiveness.

When equipped with data literacy, teams can drive more meaningful improvements to the customer experience.

Allen ties data analytics to mission fulfillment, positing that every team’s actions should be fulfilled through the lens of “how can I better accomplish my mission?” Success depends on every team member understanding the mission goal, regardless of their role. It is important to measure not just output, but the overall effectiveness of services and the CX delivered. Utilizing the right tools to analyze data, such as the latest in information technology, can extract meaningful insights and drive continuous improvement.

Rogers echoes this point, tying great CX to technology, as well as training, intuitive systems and a clearly defined process. By giving employees access to integrated tools and real-time data, businesses can streamline decisions and avoid silos. Accessibility tools, such as user-friendly interfaces and single-click actions, keep systems simple, while contextual help like built-in guides support user understanding. Using the same solution across an enterprise establishes a consistency that is recognizable to consumers. By utilizing data analytics to build on existing tools, agencies can reach customers and build trust.

Integrating Cybersecurity for Usability and Fortification

In the session “Balancing Customer Experience with Cybersecurity,” speakers Steven Boberski, the Public Sector Chief Technology Officer of Genesys, and Densmore Bartly, the Chief Information Security Officer (CISO) of the U.S. House of Representatives, discussed the integration of cybersecurity and CX. Boberski explains that security is not just technical; it impacts areas like hiring, operations and how people interact with systems. Modern technology- such as artificial intelligence (AI), automation and cloud computing- offer new opportunities to strengthen defenses and enhance CX. Tools such as speech-to-text, call summaries, smart recommendations and autofill enhance customer satisfaction, as well as security, by reducing steps and encrypting data throughout its lifecycle. Prioritizing cybersecurity safeguards both company infrastructure and customer information.

Bartly examines cybersecurity through the lens of Federal policies. While agencies must consider regulations, they can still subscribe to smart, secure policies. Cybersecurity and CX reinforce each other, and the ideal experience is a trifecta of security, functionality and usability. While implementing every best practice and new technology can be expensive, by focusing on customer priorities, agencies can pick the practices best suited for their business model and consumer base.

When choosing new technologies, agencies should follow this four-step process:

Locate business gaps

Define customer needs

Apply new technology

Layer in risk mitigation

Each of these steps lays a stronger foundation for adoption, and when paired with features that communicate a secure, protected experience, they help agencies earn the trust of both employees and customers.

Through the integration of cybersecurity and CX, agencies can deliver on both customer safety and satisfaction, reinforcing confidence in Public institutions.

How AI-Powered Compliance Solutions Are Transforming Regulatory Management for Government Agencies

Posted on by Corey Carpenter

Government agencies manage between 12,000 and 40,000 regulatory obligations, with approximately 200 to 250 new regulatory alerts issued globally every day across the financial services sector alone. This escalating complexity is driving agencies to rethink their approach to compliance management, moving away from manual, reactive processes toward intelligent, proactive solutions.

The Overwhelming Scale of Modern Regulatory Compliance

Traditional compliance methods cannot keep up with today’s regulatory demands. In the U.S., the Securities and Exchange Commission (SEC) and the Financial Industry Regulatory Authority (FINRA) account for over 5,000 of those obligations. In the future, 74% of organizations anticipate even more regulatory activity, highlighting the rise and complexity of compliance requirements.

The challenge extends beyond just volume to the speed at which regulations evolve and their divergence across jurisdictions. Traditional methods—spreadsheets, siloed systems and manual tracking—leave agencies vulnerable to gaps and inconsistencies that can result in significant penalties and reputational damage.

For Government agencies, the stakes are even higher. They must demonstrate complete adherence to regulatory standards while maintaining public trust through transparency and accountability. This creates additional pressure on compliance teams to meet regulatory requirements in a way that can withstand public scrutiny and audits.

The Hidden Costs of Manual Compliance Operations

Manual compliance processes are costly and inefficient. A 10-person compliance team loses approximately $500,000 annually to manual tasks like monitoring, tagging, mapping and documentation—excluding the costs of fines and remediation. That time could instead be spent on strategic analysis and risk prevention.

A high employee turnover rate of 23% further inflates costs, as onboarding new analysts takes months. By the time they are fully trained, they are often ready to move on from routine tasks, creating a cycle of constant training, development and replacement.

Manual processes also introduce risks such as compliance gaps, failed audits and regulatory penalties. Organizations using manual processes experience 3.2 times more violations than those with automation. These inefficiencies contribute to the expectation that compliance costs will rise 6-9% annually through 2030, making automation a financial necessity.

AI as a Force Multiplier for Compliance Teams

Archer, AI-Powered Compliance Solutions Are Transforming Regulatory Management, blog, embedded image, 2025

Artificial intelligence (AI) serves as a force multiplier that can put the expertise of a 15- or 20-year analyst into the hands of an amateur. By delivering institutional knowledge and step-by-step guidance through complex processes, AI significantly reduces onboarding time for new team members.

Its impact is both immediate and measurable. AI-powered horizon scanning reduces the time analysts spend reviewing regulatory updates from hours to minutes, filtering out up to 95% of irrelevant alerts so teams can focus on the 5% that truly matter. Natural language further enhances efficiency by breaking down complex regulatory text into digestible summaries, helping teams quickly understand and act on new requirements.

Most notably, AI automates obligation extraction from dense regulatory text—a process that manually takes 5.3 hours per obligation and has a 14.6% error rate. AI identifies obligation statements, provides rationale and tags content for routing to the appropriate business units. In doing so, AI not only streamlines workflows but also ensures greater quality and accuracy over time through expert-in-the-loop validation.

End-to-End Lifecycle Management for Regulatory Changes

Modern compliance requires a holistic approach, from identifying regulatory updates to operational implementation and audit readiness. The true value comes from operationalizing these insights into frameworks, policies, controls and measurable testing programs. Yet only 38% of organizations successfully map regulatory changes through to updated controls and audit trails.

Lifecycle management starts with comprehensive horizon scanning and extends through policy governance, control alignment and continuous monitoring. When updates—such as tighter insider trading language—triggers changes, AI flags policy conflicts, creates change requests and ties them directly to relevant citations. This creates a clear audit trail, ensuring that modifications are documented, defensible and properly embedded back into the compliance framework.

AI also strengthens control management by flagging gaps between obligations and controls, identifying conflicts with evolving regulations and static policies—such as a privacy policy’s opt-in age that conflicts with new jurisdictional requirements—and recommending changes before violations occur. This creates a responsive system where regulatory changes automatically drive updates across policies, controls and audits.

Proactive Risk Management Through Intelligent Automation

Shifting from reactive to proactive compliance enables smarter risk management. Intelligent automation identifies potential issues before they become violations and informs decisions about expanding products and services or entering new markets. Instead of months-long manual assessments, agencies can use AI to instantly identify control gaps and readiness. This can speed up service expansion or help agencies determine not to proceed.

Automated insights also enhance leadership decision-making. By combining real-time monitoring with impact analysis, agencies can prepare for regulatory changes instead of responding after implementation deadlines. These capabilities yield real results: organizations leveraging AI-driven compliance systems report a 79% reduction in audit cycle times—from 42 days to nine—and 90% fewer evidence requests from business units.

The future of Government compliance lies in embracing intelligent automation that enhances human expertise rather than replacing it. By implementing AI-powered solutions that can manage the velocity and complexity of modern regulatory requirements, agencies can transform their compliance programs from reactive cost centers into proactive strategic assets.

To learn more about how AI-powered compliance solutions can transform your agency’s regulatory management approach, watch the full webinar “Archer Evolv Compliance” and view the solution brief for a deeper dive into the platform’s capabilities.

* All statistics referenced in this blog are sourced directly from the webinar on which this content is based.

Carahsoft Technology Corp. is The Trusted Government IT Solutions Provider, supporting Public Sector organizations across Federal, State and Local Government agencies and Education and Healthcare markets. As the Master Government Aggregator for our vendor partners, including Archer, we deliver solutions for Geospatial, Cybersecurity, MultiCloud, DevSecOps, Artificial Intelligence, Customer Experience and Engagement, Open Source and more. Working with resellers, systems integrators and consultants, our sales and marketing teams provide industry leading IT products, services and training through hundreds of contract vehicles. Explore the Carahsoft Blog to learn more about the latest trends in Government technology markets and solutions, as well as Carahsoft’s ecosystem of partner thought-leaders.

Meeting the AI Mandates with Confidence: Why Federal Teams Trust Snyk

Posted on by Phoebe Nerdahl

Federal agencies are moving fast to unlock the potential of AI—from improving citizen services to driving mission outcomes. But with all that innovation comes a new wave of complexity and risk. Security, trust, and transparency can’t be afterthoughts. They need to be part of the build process from day one. That’s where Snyk for Government comes in—now FedRAMP authorized, we’ve taken it even further with the launch of the Snyk AI Trust Platform May 2025.

AI isn’t magic. It’s built on code, containers, infrastructure templates, and APIs—and increasingly, it’s generating code on its own, generating 40% more vulnerabilities than human developers. Agencies need to track, fix, and manage continuously. With Snyk, you can shift left and Secure-by-Design:

Spot and fix risks early—automatically and at scale
Keep developers moving fast while staying compliant
Build AI systems that are secure from the ground up

Meet the Snyk AI Trust Platform

Launched in May 2025, the Snyk AI Trust Platform is the first of its kind: an AI-native, agentic security platform designed for how modern teams build today. It gives agencies the tools to move quickly without compromising trust.

This isn’t just DevSecOps—it’s security built for the era of AI-driven, autonomous software development.

How Snyk is supporting new federal AI mandates

Trusted, Transparent AI Development

As agencies embrace AI, expectations around objectivity and transparency are front and center. Snyk helps teams meet those expectations with tools that focus on real technical risks—not subjective filters.

Credible vulnerability intelligence: Sourced from standards-based orgs like CVE, CWE, and NIST
Customizable policy enforcement: Agencies stay in full control with Snyk Guard’s real-time, no-bias policy engine
Integrated into your pipeline: From GitHub to Terraform to container registries—Snyk fits your workflow, not the other way around

Scaling Secure AI Infrastructure

New funding and fast-tracked initiatives mean federal developers need security tools that keep up.

FedRAMP authorized: Snyk is cleared for use across federal cloud environments
Automation where it counts: Agentic tools like Snyk Assist and Snyk Agent surface issues and fix them before they ship

Building Export-Ready, Trusted AI Systems

As global collaboration increases, secure supply chains are more important than ever. Snyk helps you ship software that’s secure, auditable, and globally trusted.

Standards-aligned: Support for SBOMs, AIBOMS, international compliance, and NIST-aligned policies
Agentic AI security: Governance that scales to GenAI assistants and LLMs—wherever and however they run
Broad ecosystem support: Integrates with the open tools your dev teams already use

Whether you’re modernizing legacy systems, launching new GenAI services, or strengthening cross-agency pipelines, Snyk helps federal teams move fast, stay secure, and build trust into every line of code.

? Ready for a tailored AI readiness assessment?
Let’s talk: federal@snyk.io

Carahsoft Technology Corp. is The Trusted Government IT Solutions Provider, supporting Public Sector organizations across Federal, State and Local Government agencies and Education and Healthcare markets. As the Master Government Aggregator for our vendor partners, including Snyk, we deliver solutions for Geospatial, Cybersecurity, MultiCloud, DevSecOps, Artificial Intelligence, Customer Experience and Engagement, Open Source and more. Working with resellers, systems integrators and consultants, our sales and marketing teams provide industry leading IT products, services and training through hundreds of contract vehicles. Explore the Carahsoft Blog to learn more about the latest trends in Government technology markets and solutions, as well as Carahsoft’s ecosystem of partner thought-leaders.

Effective Government CX Strategy: Aligning Technology, Culture and Purpose for Mission Success

Posted on by Tiffany Goddard

Citizens expect fast, seamless, personalized service. Customer experience (CX) is at the heart of every agency, impacting satisfaction, engagement and trust in Public Sector institutions. At the opening keynote during the 2025 CX and Engagement Summit, thought leaders from the General Services Administration (GSA), the Veteran’s Experience Office (VEO), GovExec, Adobe and The White House discussed centering CX initiatives to meet mission objectives, decrease costs and improve operational efficiency.

Carahsoft and its partners, such as Calabrio, Figma, Granicus, Help Scout, Liferay and NetDocuments, are equipped to connect agencies with the latest technology for CX solutions.

The Strategy Behind Effective CX

CX-centered solutions improve operations and reinforce trust in Public services. Brian Chidester, the Head of Global Strategy and Innovation at Adobe, emphasized that customers expect the same standards from Government service that they do of leading private companies. Poor CX can result in dissatisfaction, reduced engagement and erosion of trust in Public institutions.

But CX is not merely about satisfaction. A customer’s experience correlates to operational efficiency, cost savings and service effectiveness. When well-designed, centering CX enables agencies to reduce duplication, minimize support needs and improve system interoperability.

Constance Sayers, the President of GovExec, discussed the importance of engaging with customers in the face of decreasing trust in Government systems. By centering CX, Public agencies can prove their reliability and effectiveness.

There are a few main ways to center CX strategies. Public institutions can:

Empower Public agencies and services

Leverage modern tools to deliver efficient, user-centric experiences

Employ both skilled personnel and relevant technology to provide faster, inclusive and reliable service

CX must be grounded in outcomes. By starting with a measurable goal, agencies can determine how well strategies and technology meet user needs. Technology such as advanced analytics, artificial intelligence (AI) and cloud computing all enable real-time decision-making and proactive service delivery. Operational goals, such as reducing call volume or wait time, can be directly addressed through CX.

Achieving Mission Objectives Through CX-Centered Planning

Maria Roat, the Former US Deputy Federal Chief Information Officer for the Executive Office of the President, emphasized that CX must be a mindset across all teams and departments. To improve mission-related outcomes, proficient staff with specialized skills and experience are essential to seeing continuous improvement. Teams should begin with a clear, defined concept of their mission objectives and desired end-state. Policy constraints and operational hurdles should be taken into account when designing a strategic process to accomplish objectives. Roat advises team leaders to conceptualize their goals into a single sentence to maintain focus on the mission. By questioning existing procedures, teams can overcome outdated policies and misaligned priorities that create roadblocks to progress. By overcoming barriers and prioritizing preparation and realistic planning, agencies can ensure continued, long-term success for CX initiatives and beyond.

Sonny Hashimi, the Former Commissioner of Federal Acquisition Service in the GSA, echoes this point, attesting that effective CX begins with understanding the “why;” which issue is being addressed, and who the audience is. Processes cannot be effectively updated without measuring the progress. By defining clear goals and tracking their progress, teams can improve CX by fulfilling grounded outcomes that are measured by how well they meet user needs. By embedding CX into core operations to ensure services are designed around user needs and not internal processes, agencies can offer seamless service.

People-First CX Initiatives

At the closing keynote “The Future of Government Customer Experience,” Barbara C. Morton, the Deputy Chief Veterans Experience Officer at the VEO of the Department of Veterans Affairs, discussed how active listening and CX are intrinsically tied. Listening to veterans, survivors and their families empowered the VEO with actionable items to improve their CX. The VA CX Office was established on that very principle, using data and insights to embed CX into everyday programs, services and trainings. In action, this looks like offering services that customers can directly interact with, ensuring users do not “fall between the seams.” CX teams utilize feedback to identify service gaps and implement cross-functional action plans. Technology can be used to amplify human-centered service by improving speed and accuracy. AI, for example, has enabled the VA to scale its services to maximize efficiency. Human-centered design ensures that service design and delivery begin with the lived experiences of customers. Morton attests that in a democracy, to serve is to listen; CX is foundational to Government legitimacy. By tuning in to customer stories, the VEO and other agencies maintain focus on people, not just processes.

By prioritizing customer experience, agencies can ensure their work reflects both their internal values and the communities they serve.

To learn more about the topics discussed at the 2025 CX & Engagement Summit, view the session recordings, on-demand. To learn more about the technologies that can help meet your agency’s mission statement, take our Carahsoft’s CX Buyer’s Guide Quiz, or visit our CX and engagement solutions portfolio.

How AI-Powered Contract Writing is Transforming Federal Acquisition Operations

Posted on by Patrick Hughes

Federal agencies are facing growing pressure to deliver acquisition solutions faster, more efficiently and with deeper commercial market engagement; however, traditional manual contract processes are proving insufficient for meeting mission-critical timelines. The union of artificial intelligence (AI) and enterprise resource planning systems now offers a transformative solution that automates contract creation, ensures compliance and maintains the real-time visibility essential for modern Federal operations.

AI-Driven Contract Automation and Efficiency

Integrating AI into contract writing shifts Federal contracting professionals’ focus from administrative burden to strategic work. Modern AI-powered platforms automatically select and populate appropriate Federal Acquisition Regulation (FAR) and Defense Federal Acquisition Regulation Supplement (DFARS) clauses based on acquisition parameters such as contract type, commodity classification and procurement method. This automation eliminates time-consuming manual clause selection and reduces the risk of human error in compliance requirements.

Beyond simple clause insertion, the technology supports form generation and contract assembly. When contracting officers define basic parameters—whether procuring supplies or services, acquisition type and contract structure—the AI system cascades these selections to generate comprehensive solicitation packages. What once required weeks of manual preparation becomes a streamlined process completed in hours. The system maintains full version control and audit trails to document every modification and decision point for future reference and compliance reviews.

This automation enables teams to prioritize higher-value strategic tasks such as developing innovative procurement strategies, refining requirements and engaging with industry to identify cutting-edge solutions that advance mission objectives.

Seamless ERP Integration and Data Flow

Modern contract management lies in seamless integration across the procurement ecosystem. Enterprise resource planning (ERP) integration eliminates data silos, creating a unified environment where contract information flows automatically between sourcing, execution and financial systems. Vendor master data, pricing information and contract line-item details populate without requiring duplicate data entry across platforms, establishing a single version of truth for contract data.

When sourcing events transition into contract execution, all relevant information transfers seamlessly, maintaining continuity throughout the lifecycle. Execution activities automatically update contract status and performance metrics, providing real-time visibility into utilization, budget consumption and milestones.

This integrated environment proves valuable for complex Federal acquisitions involving multiple stakeholders and extended timelines. Project command centers automatically populate with relevant documents, team members and milestone tracking based on acquisition type and requirements. Comprehensive audit trails and proactive management of contract modifications, amendments and closeout procedures support effective oversight and decision-making across large contract portfolios.

Federal Compliance and Risk Mitigation

Icertis, AI Powered Contract Writing, blog, embedded image, 2025

Compliance with Federal acquisition regulations has grown increasingly complex as oversight requirements intensify and regulatory frameworks evolve. AI-powered contract systems address these challenges through automated compliance checking that ensures appropriate clauses, terms and conditions are consistently applied across all contract types. Clause libraries remain current by syncing with acquisition.gov, incorporating regulatory updates and agency-specific supplements automatically.

The system recognizes compliance requirements based on contract characteristics and dollar thresholds. For example, small business set-asides trigger inclusion of socioeconomic clauses and certification requirements, while construction contracts incorporate relevant safety and environmental provisions. This automation reduces the risk of protests and disputes while ensuring consistent compliance across an agency’s entire contract portfolio.

Risk mitigation capabilities include proactive monitoring and automated alerts for critical milestones. The system identifies potential supply chain vulnerabilities, flag contracts approaching funding limits and recommends amendments or modifications before performance is impacted. This approach helps agencies address issues early to maintain operational continuity and comply with Federal oversight.

Mission Readiness and Supply Chain Resilience

Modern Federal operations demand the ability to respond rapidly to evolving mission requirements and supply chain disruptions. AI-powered contract intelligence equips acquisition professionals with dashboards offering both macro and micro perspectives on contract portfolios. This visibility enables rapid identification of alternative sources when primary suppliers face disruptions or surge contracting requirements emerge.

During crisis response, contracting officers can quickly assess contracts offering similar solutions or services, explore modification options and evaluate supply chain pivots. The system also highlights relevant clauses affected by changing requirements and what alternative sourcing strategies are available within existing vehicles. Instead of relying on institutional knowledge or manual searches, acquisition professionals can access real-time analytics on contract performance, vendor capabilities and available vehicles. This capability is essential when scaling operations or pivoting to address emerging threats while maintaining compliance.

End-to-End Contract Lifecycle Management

Comprehensive contract lifecycle management spans every phase, from requisition through closeout, maintaining continuity and institutional knowledge. Modern platforms support the full Federal contract framework, including all sections of the Uniform Contract Format (UCF) and management of complex parent-child relationships between base contracts and amendments. This ensures modifications maintain proper documentation and approval workflows while preserving historical context essential for audit and oversight.

Amendment processing is a particular strength: Standard Form (SF)-30 modifications can be generated automatically while retaining all original contract information and maintaining version control. Contracting officers can modify delivery schedules, quantities or performance requirements as needed—essential for managing long-term contracts that evolve over time.

AI capabilities also extend to contract analysis and summarization, enabling rapid comprehension of complex documents. Contracting officers can query contracts in natural language to locate specific clauses, assess risk or understand approval workflows. This proves valuable during reviews, protest responses or when new team members need to quickly understand contract structures and requirements.

Federal acquisition operations continue evolving as agencies balance increasing mission demands with the need for transparency, efficiency and compliance. AI-powered contract writing offers a transformative opportunity to modernize acquisition processes while maintaining the rigor and oversight Federal operations require. The convergence of AI, enterprise integration and comprehensive lifecycle management equips acquisition professionals with the tools to meet today’s challenges and prepare for future success.

Discover how AI-powered contract writing can transform your agency’s acquisition operations by watching the full webinar, “Advancing Mission Readiness with AI-Powered Contract Writing.”

Carahsoft Technology Corp. is The Trusted Government IT Solutions Provider, supporting Public Sector organizations across Federal, State and Local Government agencies and Education and Healthcare markets. As the Master Government Aggregator for our vendor partners, including Icertis, we deliver solutions for Geospatial, Cybersecurity, MultiCloud, DevSecOps, Artificial Intelligence, Customer Experience and Engagement, Open Source and more. Working with resellers, systems integrators and consultants, our sales and marketing teams provide industry leading IT products, services and training through hundreds of contract vehicles. Explore the Carahsoft Blog to learn more about the latest trends in Government technology markets and solutions, as well as Carahsoft’s ecosystem of partner thought-leaders.

The End of Manual Inspections? How AI and Dashcam Imagery Are Redefining Roadway Management

Posted on by Mark Pittman

Years ago, as I waited at a traffic light, I wondered why infrastructure maintenance still leaned so heavily on manual inspections and reporting. That question sparked an idea: What if roads could tell us when something was wrong?

Today, that vision has become a reality. Dashcam imagery—passively captured from vehicles already on the road—is now powering automated AI models that detect issues like fading lane paint, damaged signs, and debris. Looking ahead, the integration of expansive imagery sources, such as Google Street View, promises to further enhance this capability, offering broader and more detailed coverage. It’s a shift from scheduled inspections to constant awareness, from sending crews out to bringing insight in.

Automation with Real Impact

Traditional inspections are resource intensive. They usually involve deploying extra staff and specialized equipment, and scheduling work during off-hours to avoid disrupting traffic. AI-driven visual intelligence of dashcam footage can reduce the number of manual surveys required by more than 90%, saving considerable time and money.

Take Fort Worth. Dashcam imagery gave the city a fresh look at lane striping and sign visibility, but from the driver’s perspective, not an aerial map. It’s how people experience the road daily, and it’s the same view automated vehicles rely on to safely navigate.

Instead of waiting months for a full inspection cycle, cities can spot and act on issues within days. Enabling faster response and more strategic use of limited resources.

Smarter Operations. Less Fieldwork.

While field checks are still common for most agencies, the model is shifting. With dashcam footage collected by vehicles already in motion and analyzed automatically, teams can now monitor more of the network without constantly dispatching field crews.

In Alaska, for example, dashcam data is used to monitor remote routes that are difficult and sometimes dangerous for crews to inspect in person. This kind of visibility can be a game changer for regions with tough geography or tight budgets.

Instead of following a fixed schedule or responding to complaints, agencies can now rely on AI-driven alerts to flag when conditions change. It’s a shift from routine patrols to focused action, and it means fewer trips to the field, less fuel, and better outcomes with the same (or smaller) team.

Compliance without the Complexity

Staying compliant with FHWA, MUTCD, and other federal standards typically requires a lot of paperwork. However, with AI-based monitoring, those checks can happen automatically in the background. Retroreflectivity, sign placement, and line clarity are continuously reviewed and documented.

Each data point is visual, time-stamped, and ready for audits, grant applications, or internal reviews. Even better, it’s easy to share. Operations, maintenance, and planning teams can stay aligned without sifting through emails or outdated spreadsheets.

A New Model for Infrastructure

The future of road operations isn’t about more inspections. It’s about smarter ones. Or, in many cases, none at all. When roads can essentially report their condition using dashcam footage and AI, agencies don’t have to guess or wait. They already know what’s happening.

And this is only the beginning. As capabilities such as historical imagery access and visual change detection over time emerge with Google Street View and become integrated, transportation teams will gain even deeper insight into how their infrastructure evolves. These images will empower agencies to identify long-term patterns, track degradation over time, and intervene before minor issues escalate into costly repairs.

For public teams expected to cover more ground with fewer resources, this isn’t just about saving time. It’s about working in a more intelligent, sustainable way, built for the demands of today’s infrastructure and ready for tomorrow’s.

Ready to stop checking and start knowing?