CISA CISA’s Hartman Cites Hard Work, Struggles in Feds’ Zero Trust Shift
Federal agencies are engaged in “a tremendous amount of work” to meet requirements to move to zero trust security architecture as laid out in President Biden’s cybersecurity executive order issued last year, even as some agencies are struggling with initial steps to begin that transition, a top Cybersecurity and Infrastructure Security Agency (CISA) official said Wednesday.
Recent News
  1. National Cyber Director Seeking Input on Cyber Workforce Strategy
    The White House’s Office of the National Cyber Director (ONCD) is calling on stakeholders across the tech industry to provide their insight and expertise on the agency’s strategy to address the severe shortages in cyber workforce, training, and education.
  2. State Department State Department Awards Verizon $1.6B EIS Contract
    The State Department has awarded Verizon a $1.6 billion contract to modernize communications infrastructure and provide IT services for the agency’s nearly 260 embassies, consulates, and other facilities across the globe.
  3. Herckis Named Permanent Cyber Director in Fed CIO Office
    Mitchel Herckis has been named to the permanent role of Director of Federal Cybersecurity at the Office of Federal Chief Information Officer (CIO) Clare Martorana, within the Office of Management and Budget (OMB).
  1. Senate hearing Congressional-min Biden’s OIRA Nominee Sets Sights on Circular A-4 Changes
    Richard Revesz - President Biden’s nominee to become the Administrator for the Office of Information and Regulatory Affairs (OIRA) at the Office of Management and Budget (OMB) – told senators at a September 29 nomination hearing that he is targeting updates to existing regulatory analysis standards if he is confirmed to the new post.
  2. U.S. Urged to Speed Pace in Advanced Tech Race With China
    Officials from academia and the private sectors told senators last week that the United States needs to speed its efforts to develop advanced technologies – including artificial intelligence (AI), quantum information science (QIS), and distributed ledger tech (DLT) – to stay ahead of rapid development in those areas by China.
  3. GAO: Feds Could Improve Collaboration When Helping SLTTs With Ransomware Attacks
    A new report from the Government Accountability Office (GAO) found that Federal agencies are successfully helping state, local, tribal, and territorial (SLTT) governments prevent and respond to ransomware attacks; however, there is still room to improve collaboration. The GAO offered three recommendations for Federal agencies to improve collaboration.
  4. AI White House Issues Blueprint for ‘AI Bill of Rights’
    The White House’s Office of Science and Technology Policy (OSTP) issued a new blueprint today for an “AI Bill of Rights” to help guide organizations on the development and deployment of artificial intelligence, in an effort to help protect the rights of Americans in the age of AI.
  1. House Approves New FedRAMP Codification Bill
    The House last week voted to approve an updated version of legislation that would codify into law and update the Federal Risk and Authorization Management Program (FedRAMP).
  2. CISA Opens Nationwide Cybersecurity Review for SLTT Entities
    The Cybersecurity and Infrastructure Security Agency (CISA) has opened their annual, voluntary cybersecurity assessment for state, local, tribal, and territorial (SLTT) entities across the nation and aims to provide a broad picture of the current cybersecurity gaps and capabilities.
  3. White House Sets New Tech Grants, Boosts SDB Contract Target
    The Biden-Harris Administration announced today a list of actions it is taking to deliver funding and other resources help development of small businesses in underserved communities, including $100 million in new technical assistance grants.
  4. Biden Signs Three-Year SBIR/STTR Extension Into Law
    President Biden on September 30 signed into law the Small Business Innovation Research (SBIR) and Small Business Technology Transfer (STTR) Extension Act of 2022, which extends the programs for another three years. They had been scheduled to expire on September 30.
  5. Air Force Accepting Proposals for $5B Cyber Framework Contract
    The U.S. Air Force has released its final solicitation for a $5.3 billion contract vehicle that will aid warfighters in supporting and enabling the Defense Department’s entire cyber framework.
  6. MeriTalk Research: SLG IT Leaders Reveal Startling Risks in Cyber Defenses
    Amid a tumultuous threat landscape, state and local government (SLG) IT leaders are warning that their organizations’ cybersecurity preparedness is putting citizen data at risk, according to new research from MeriTalk, underwritten by Invicti, Keeper, Recorded Future and ServiceNow.
  7. CISA Orders Agency Actions on Asset Visibility, Vulnerability Detection
    The Cybersecurity and Infrastructure Security Agency (CISA) has issued a binding operational directive (BOD) that sets baseline requirements for Federal civilian agencies to identify assets and vulnerabilities on their networks, and to provide data to CISA on those assets and on vulnerability detection.
  8. House Dems Debut Bill to Limit Law Enforcement Facial Rec Use
    Several House Democrats introduced legislation late last week to limit the ability of law enforcement agencies to use facial recognition technologies.
  9. Biden, NCD, CISA Kick Off Cybersecurity Awareness Month
    President Biden has declared October 2022 as Cybersecurity Awareness Month – making it the 19th consecutive year of that designation.
  10. GAO Pokes OMB, NSF on Cyber Workforce Scholarship Management
    The Government Accountability Office (GAO) said in a new report that the National Science Foundation (NSF) and the Office of Personnel Management (OPM) have plenty more work to do to tighten up the management side of the CyberCorps Scholarship for Service Program.