惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

F
Fortinet All Blogs
S
Secure Thoughts
月光博客
月光博客
美团技术团队
雷峰网
雷峰网
Exploit-DB.com RSS Feed
Exploit-DB.com RSS Feed
奇客Solidot–传递最新科技情报
奇客Solidot–传递最新科技情报
N
News and Events Feed by Topic
freeCodeCamp Programming Tutorials: Python, JavaScript, Git & More
Forbes - Security
Forbes - Security
W
WeLiveSecurity
P
Proofpoint News Feed
阮一峰的网络日志
阮一峰的网络日志
爱范儿
爱范儿
G
GRAHAM CLULEY
cs.AI updates on arXiv.org
cs.AI updates on arXiv.org
AI
AI
Last Week in AI
Last Week in AI
Google Online Security Blog
Google Online Security Blog
Schneier on Security
Schneier on Security
云风的 BLOG
云风的 BLOG
Threat Intelligence Blog | Flashpoint
Threat Intelligence Blog | Flashpoint
Recent Announcements
Recent Announcements
Webroot Blog
Webroot Blog
T
Tor Project blog
Cisco Talos Blog
Cisco Talos Blog
N
News and Events Feed by Topic
罗磊的独立博客
The Register - Security
The Register - Security
Blog — PlanetScale
Blog — PlanetScale
T
Threat Research - Cisco Blogs
博客园 - 【当耐特】
Apple Machine Learning Research
Apple Machine Learning Research
人人都是产品经理
人人都是产品经理
T
The Exploit Database - CXSecurity.com
www.infosecurity-magazine.com
www.infosecurity-magazine.com
B
Blog
腾讯CDC
Microsoft Azure Blog
Microsoft Azure Blog
酷 壳 – CoolShell
酷 壳 – CoolShell
H
Hacker News: Front Page
Application and Cybersecurity Blog
Application and Cybersecurity Blog
Engineering at Meta
Engineering at Meta
Latest news
Latest news
IT之家
IT之家
D
DataBreaches.Net
博客园 - 司徒正美
N
Netflix TechBlog - Medium
V
V2EX
钛媒体:引领未来商业与生活新知
钛媒体:引领未来商业与生活新知

MeriTalk

Eliminating Silos in IT/OT Cybersecurity Is a Funding Challenge, Not a Technical One The FedRAMP High Supply Crisis Is a Federal Security Problem – Not a Procurement Footnote How More Tightly Focused Software Development Initiatives Will Unlock Innovation Across Government Transforming Federal Cybersecurity Through Private Sector Innovation Evolving Zero Trust and Embedded AI – Federal Government Cybersecurity Predictions for 2026 Unlocking AI’s Potential in High-Assurance Environments Accelerate Agentic AI in the Federal Government: Top Takeaways Why Congress Must Reauthorize the Technology Modernization Fund Make Cybersecurity a Key Ingredient of Modernization How Spectro Cloud’s PaletteAI Secure helps agencies scale AI securely, compliantly, and confidently Fix the Foundation: How Hybrid Cloud and Trusted Data Enable Government AI New Google Workspace Cost-Saving Offer Available for U.S. Federal Government Reinventing FedRAMP in the Age of AI Balancing Security and Efficiency: The Federal IT Dilemma in the AI Era Meeting Evolving State and Local Cyber Threats AI Is the Solution to Stop AI Data Theft Enhancing U.S. Government Operations with AI and Human-Centered Design Will Quantum Computing Weaken or Strengthen Cybersecurity of Federal Systems? Improving Citizen and Federal Employee Experience with Virtual AI Assistants Strategies for Securing the Federal Supply Chain Reframing the U.S. Government’s Approach to Cybersecurity Oversight Three Steps Agencies Can Take to Meet Government’s AI Requirements The Impact of NIST’s PQC Standardization on the Federal Cybersecurity Ecosystem Generative AI is Revolutionizing Federal Government Operations NIST’s new PQC Algorithms and What They Mean for Federal Agencies Addressing the U.S. Quantum Labor Shortage Before It’s Too Late How a Community Vigil Approach and Secure by Design are Critical to Software Cybersecurity Addressing the Talent Shortage: How Digital Government Improves Satisfaction, Retention Here’s What We Can Learn (and Do) About Cybercrime from FBI’s Latest Internet Crime Report Implementing AI Assurance Safeguards Before OMB’s December Deadline The Next AI Wave: Quantum AI CDM’s Evolution to Non-Traditional Technology: Why Now and How Will it Succeed? Customer Expectations Require Agencies to Raise the Bar on Customer Experience, Report Shows Applying for Government Benefits Shouldn’t Be Difficult When It Comes to Identity Verification Four Federal Software Supply Chain Security Trends to Watch FedRAMP Baseline Transition Points to OSCAL-Native Tools What Zero Trust Means for Modern Government: Best Practices for Key Tenets Four Ways to Handle the IT Funding Crunch Agencies Need to Get Creative to Fill the Cyber Workforce Gap Customer Identity trends report shows control trumps convenience Federal Agencies Making Strides Toward Sustainability and Climate Action Executive Order 14028 | Improving the Nation’s Cybersecurity Depends on Data | All Data is Security Data Applying Geospatial Intelligence, AI/ML to Climate Change Challenge My Cup of IT: Angry at Arthritis, Hunting for Cures How the Federal Government Can Help Combat a Fragmented Internet Accelerating Cybersecurity for US Critical Infrastructure Getting in on the Ground Floor of the ‘New Observability’ Comply-to-Connect is Key to Zero Trust for DoD How Will Upcoming Cryptocurrency Regulations Affect Industry? My Cup of IT: Cup Cake for Kushner? Launching a New Era of Government Cloud Security Managing IT Complexity in Federal Agencies Agencies Must Modernize Zero Trust Approaches to Achieve Optimal Protection Five Essential Metrics for Measuring Federal Government CX Unlocking the Benefits of 5G and Beyond The Federal Factory of the Future: How AI is Transforming Manufacturing The Quantum Impact on Cyber How Next-Gen Computers Will Transform What’s Possible for Federal Government Agencies Must Take an Authentic Approach to Synthetic Data Biometrics and Privacy: Finding the Perfect Middle Ground Two-Way Street: Why Officials and Constituents Are Equally Responsible for Securing the Midterms The “Programmable World” Will Bring the Best of the Virtual World Into the Physical One Cyberattacks are a Common Occurrence and the Costs are Higher Than Ever Increasing Equity Through Data and Customer Experience The AI Edge: Why Edge Computing and AI Strategies Must Be Complementary How Metaverses and Web3 can Reshape Government Four Emerging Technology Trends set to Impact Government Most 5G Enables AI at the Edge Plugging Cyber Holes in Federal Acquisition Resilient Critical Infrastructure Starts with Zero Trust The Evolution of Government Tech Procurement Under CMMC 2.0 Zero Trust Requires Continuous, Tested Security for Federal Agencies How Multi-INT Fusion Accelerates Mission Intelligence for Real-Time Decision Advantage Three Things to Consider for Responsible AI in Government Legislation, White House Orders Show Agencies Opportunity for Hybrid Cloud Creating an Effective Framework for DoD’s Software Factories Realizing Upsides for Digital Security in the Hybrid Workplace A Future With AI and ML: The Power of Workforce Education Five Tips to Begin MFA Integration and Embrace Zero Trust The Vital Intersection Between Equity and Digital Transformation Equity as a Platform: Applying a New Mindset to Scale Innovation Harnessing the Right Data for Evidence-Based Equity From EO to Action: Human Factors of Enabling a Cyber Safety Review Board For Equity in Government Services, It’s Time to Change the Paradigm Critical Questions to Ask When Considering Explainable AI (XAI) for Your Federal Agency The Telework Model for Government: COVID Lessons for Building an Effective Workforce DevSecOps: 4 Steps for Mitigating the Next Cyber Attack in Your Federal IT Environment Better Cyber Hygiene Helps, but Federal Security Needs SASE Lift DoD, Feds Plot Top Cyber, Cloud Priorities for 2022 Cloud-Native Government: How to Transform With Intention DoD and VA Health Networks Face Growing Threat From Medical-Device Vulnerabilities New Federal Cybersecurity Requirements: How Agencies Should Implement a Zero Trust Architecture Protecting Our Nation Through Big Data Analytics Three Ways COVID-19 Altered Federal, State IT Budget Allocations Ransomware is More Than a Cybersecurity Issue From Me to We: Take the Mission Further With Multiparty Systems Anywhere, Everywhere: Integrating Your Virtual Workplace ‘I, Technologist’: Empowering Innovators in the Federal Workforce Mirrored World: Digital Twins Report for Duty Across Government Stack Strategically: Rearchitecting Government for What’s Next
How FinOps Can Help Agencies Slash Cloud Costs in 5 Steps
MeriTalk Sta · 2025-04-22 · via MeriTalk

By Nicolas Ojeda, Technology Business Management/FinOps lead, REI Systems

William Kasenchar, principal, REI Systems

As the White House seeks to cut spending and increase efficiency, government leaders should apply FinOps principles to seize the opportunity to optimize cloud service costs. This strategy, widely adopted in the private sector, presents an opportunity to save hundreds of millions of dollars while improving operational efficiency across federal agencies.

FinOps is a framework for applying business best practices to cloud cost optimization. While conceptually simple, FinOps requires analyzing a complex mix of cloud usage patterns, multi-vendor pricing structures, contract discounts, and government procurement regulations.

Applying FinOps is particularly challenging for federal agencies due to regulatory roadblocks, shadow IT, cost transparency issues, and inefficient provisioning. Unlike private companies, agencies must comply with Federal Acquisition Regulation (FAR) policies that prevent multi-year financial commitments, limiting their ability to secure long-term cost savings.

In the private sector, companies leverage multi-year commitments to secure cloud discounts of up to 70 percent, but FAR restrictions mean that agencies can often only secure 20 percent discounts on one-year contracts. The estimated annual savings lost due to this limitation across the federal government are approximately $500 million annually.

Although changes to the FAR require congressional approval, previous attempts were met with resistance due to concerns over long-term budgeting constraints. However, the increasing emphasis on government efficiency and spending cuts creates an opportunity for policy reform, provided agencies can demonstrate tangible cost-saving benefits through pilot programs and internal studies.

5 Steps to Implementing FinOps in Government Agencies

Despite the roadblocks, there are steps agencies can take now to implement FinOps and achieve those savings and efficiencies:

  1. Negotiate pricing similar to multi-year commitments. Even though agencies cannot sign multi-year agreements at this time, they can negotiate for equivalent pricing through persistent vendor negotiations that – under the right circumstances – leverage offers from cloud providers with discounts comparable to multi-year deals. Agencies can also demand aggregation, pooling demand from multiple organizations under a single contract to increase their leverage. In addition, they should benchmark against private sector pricing. Understanding what major enterprises pay can provide a negotiating advantage.
  2. Right-size cloud purchases to actual needs. Agencies should thoroughly assess their actual cloud consumption to prevent over-provisioning or underutilization. Key best practices include automating cost monitoring to identify unused or underutilized resources; adopting commitment-based models such as savings plans or committed use discounts to maximize efficiency; and implementing a chargeback model where internal departments are accountable for cloud usage.
  3. Consolidate contracts for enterprise-level discounts. Many government agencies operate in silos, leading to duplicative cloud contracts across different bureaus. By consolidating these contracts into an enterprise-wide agreement, agencies can unlock higher volume discounts, improve cost transparency and governance, and reduce administrative overhead by simplifying procurement processes.
  4. Optimize operational FinOps practices. Beyond procurement, agencies must focus on cost governance to ensure long-term savings. Key strategies include data storage and retention policies for preventing unnecessary backups and excess storage fees; performance tuning to regularly adjust computing power to match demand; and automated provisioning tools for scaling cloud resources dynamically to avoid waste.
  5. Leverage emerging technologies for cost efficiency. Cloud and FinOps are evolving, and agencies should harness new technologies to enhance cost savings. For example, AI-driven cost analysis using machine learning models can automatically predict cloud usage trends and recommend cost optimizations. Automated workload scaling leverages intelligent orchestration tools (e.g., Kubernetes, AWS Auto Scaling) to dynamically adjust resources to match real-time demand. And cloud-native FinOps platforms like Apptio Cloudability, CloudHealth, and AWS Cost Explorer provide real-time financial insights and governance controls.

By investing in these technologies, agencies can proactively manage cloud costs, prevent budget overruns, and increase efficiency.

Overcoming Cultural Resistance to FinOps Adoption

A significant barrier to FinOps implementation is cultural resistance within government agencies. Unlike the private sector, where cost accountability is deeply ingrained, public sector organizations often struggle with siloed decision-making that limits cross-agency collaboration, bureaucratic inertia that slows the adoption of new financial governance models, and a lack of cloud cost awareness among IT and finance teams.

To address these challenges, agencies must establish cross-functional FinOps teams composed of finance, IT, and procurement professionals. They should provide FinOps training and certification programs for government employees and implement incentive structures that reward cloud efficiency and cost-saving initiatives.

FinOps offers a proven approach for slashing cloud costs and optimizing government IT spending. These strategies allow federal agencies to modernize their cloud operations, achieve significant cost savings, and drive long-term efficiency improvements across government IT infrastructures.