The Biden campaign announced two new cybersecurity hires – Chris DeRusha as CISO and Jacky Chang as CTO. […]
The Cybersecurity and Infrastructure Security Agency (CISA) released a strategy today intended to “strengthen and unify industrial control systems (ICS) cybersecurity for a more aligned, proactive, and collaborative approach to protect the essential services Americans use every day.” […]
The Department of Homeland Security’s (DHS) Cybersecurity and Infrastructure Security Agency (CISA) debuted Chapter 2 of the CISA Cyber Essentials Toolkit which centers around how organization staff and the users can exercise good cyber posture. […]
The Department of Homeland Security (DHS) Science and Technology Directorate (S&T) and the National Information Assurance Partnership with the National Security Agency (NSA) said June 29 that their joint pilot program is showing that cybersecurity for mobile application software for Federal use can be an automated process. […]
The Cyber Threat Alliance (CTA) and the Center for Internet Security (CIS) have signed a cooperation agreement on cybersecurity and threat data issues, according to a June 28 press release. […]
In a move to shore up the United States’ technology superiority on the international stage, Congress has introduced two new pieces of legislation. […]
Federal cybersecurity is more critical than ever as agencies quickly adapt to a “maximized telework” environment. But, how effective are Feds’ current cybersecurity efforts? What is working well in agencies’ cybersecurity strategies, and what needs to change? […]
In a letter to the Office of the Director of National Intelligence (ODNI), Sen. Ron Wyden, D-Ore., raised questions on cybersecurity issues across the intelligence community (IC), and suggested that the IC may need to fall under the purview of the Department of Homeland Security’s (DHS) authority of requiring all Federal agencies to adopt specific cybersecurity technologies and policies. […]
The National Institutes of Health announced June 15 that it has launched a new data analytics platform to track COVID-19 patient data. […]
Agencies are now up and running with their mobile workforces – which means telework is here to stay. But with this increased number of endpoints and phishing as the top threat vector, Feds must be more vigilant about their approach to mobile security, according to Bob Stevens, vice president of Americas, Lookout. […]
Sen. Gary Peters, D-Mich., introduced two bills – the Continuity of Economy Act of 2020 and the National Guard Cyber Interoperability Act of 2020 – with the goal of bolstering the United States’ cyber defenses. […]
As agencies have gone remote, they have had to evolve their cyber security strategies to adjust to their new telework reality. What challenges are they encountering as they make this shift? How can they adopt or adapt “bring your own device” (BYOD) plans to ensure the security of agency applications and data? […]
Autonomous cybersecurity is changing the way the government protects and secures its crucial data. By leveraging artificial intelligence and machine learning, agencies can respond to cyber threats in real time and more efficiently than ever. MeriTalk connected with Dr. Matt McFadden, Cyber Director, GDIT to discuss this burgeoning field. […]
The National Institute of Standards and Technology’s (NIST) National Cybersecurity Center of Excellence (NCCoE) announced June 8 that it has invited 10 technology providers and industry experts to collaborate on the Protecting Information and System Integrity in Industrial Control System Environments Project. […]
A confluence of trends – including ever-mounting cyber attacks, expanding network attack surfaces stemming from increased teleworking during the coronavirus pandemic, and an enduring shortage of skilled cybersecurity workforce talent – is creating demand for more autonomous cybersecurity technologies. […]
The Cybersecurity and Infrastructure Security Agency (CISA) is leading the call for a governmentwide vulnerability disclosure platform, with a request for proposals from agencies coming as soon as summer 2020. […]
The National Security Agency has identified Russian military cyber actors – part of the General Staff Main Intelligence Directorate’s (GRU) Main Center for Special Technologies (GTsST) – have exploited a vulnerability in Exim mail transfer agent (MTA) software since at least August 2019. […]
The Government Accountability Office (GAO) made several recommendations to the Office of Management and Budget (OMB) and others to improve coordination of cybersecurity requirements among Federal agencies to protect data shared with state government agencies. […]
Federal agencies got better at fending off cyberattacks and improving their overall cybersecurity posture last year, according to the Fiscal Year 2019 Federal Information Security Modernization Act (FISMA) Annual Report to Congress. […]
Eleven GOP members of the House Science, Space, and Technology Committee have requested a briefing on a cyber alert issued by the Cybersecurity and Infrastructure Security Agency (CISA) and FBI on May 13. […]
As Congress begins work on future COVID-19 relief bills, a group of bipartisan legislators wrote to House and Senate leadership urging them to include funding for state and local government (SLG) IT infrastructure in future relief bills. […]
The U.S. Census Bureau is seeking industry input on a new acquisition strategy to revamp its cybersecurity practices over the next decade, according to a May 20 request for information (RFI). […]
In a move to ward off foreign adversaries, Sens. Ron Wyden, D-Ore., Mike Rounds, R-S.D., and Rep. Anna Eshoo, D-Calif., led the charge to encrypt phone calls between the chambers to protect communications against foreign surveillance. […]
The Senate Commerce Committee advanced key pieces of IT legislation out of markup during today’s business meeting. […]
Before the COVID-19 outbreak, just 40 percent of Federal and only 4 percent of State and Local government employees were authorized to telework. But since then, the Office of Management and Budget (OMB) is mandating that Federal agencies maximize telework across the nation, and many SLGs are doing the same. Embracing telework – and doing it right – is a government-wide priority. […]
In a move to strengthen the United States’ cybersecurity posture, Sens. Jacky Rosen, D-Nev., Roger Wicker, R-Miss., and Cory Gardner, R-Colo., introduced the Cybersecurity Competitions to Yield Better Efforts to Research the Latest Exceptionally Advanced Problems (CYBER LEAP) Act of 2020. […]
The Government Accountability Office said in a new report that it has 11 open recommendations to the Defense Department (DoD), among a total of 1,106 outstanding open recommendations to the agency. […]
The United States’ Cybersecurity and Infrastructure Security Agency (CISA) and the United Kingdom’s National Cyber Security Centre (NCSC) have jointly issued a cybersecurity warning for healthcare organizations in both countries. […]
The NIST Cybersecurity Framework, initially issued in early 2014, outlines five functions with regard to cybersecurity risk: identify, protect, detect, respond, and recover. Of these functions, those on the far left encapsulate measures that could be considered pre-breach; those on the right, post-breach. Far too often, however, government agencies tip the scales too far to the left. […]
With the COVID-19 pandemic forcing both Federal agencies and the private sector to make a rapid shift to telework, the Cybersecurity and Infrastructure Security Agency (CISA) launched a dedicated telework product line. […]