Quick Hits

*** Many states are only in the beginning stages of modernizing their IT structure, according to a study by the Internet Association, a trade group representing technology companies. In the group's analysis of state and local technology advancements released Tuesday, 24 states scored in the "getting started" category. Only three reached "very good," and none reached categories rated even higher, like "exceptional."

The analysis includes an interactive map called "SITARA" -- State, Local, Tribal, and Territorial Information Technology Advancing Reform Achievements. It evaluates localities in three categories -- modern IT infrastructure, effective modernization efforts and cybersecurity. The association used 11 metrics across the three categories to give scores.

*** The General Services Administration's internal IT security program is effective, but it needs some attention to detail, according to Federal Information Security Modernization Act (FISMA) report from independent auditor KPMG. The report was released by GSA's Office of Inspector General. Across those systems, KPMG said it found seven control deficiencies in two of FISMA's reporting domains -- configuration management and identity and access management. Among KPMG's recommendations was a suggestion that GSA get a better handle on some its cloud providers' software updates. The report said GSA had attributed some of the unsupported software issues to its cloud provider not having plugins to easily find that unsupported software.