DHS Launches ICT Sector Supply Chain Risk Task Force

The Department of Homeland Security on Oct. 30 announced launch of the Information and Communications Technology (ICT) Supply Chain Risk Management Task Force, which the agency said is charged with developing “consensus recommendations” to identify and manage risk to the global ICT supply chain.

[…]

Tagged , , , | Leave a comment

DHS’ Manfra Discusses FISMA Update, Impact to CDM

Jeanette Manfra, assistant secretary for the Office of Cybersecurity and Communications at the Department of Homeland Security, said today that the new update to Federal Information Security Modernization Act (FISMA) guidance will place even more accountability on department leaders and reflects an evolution in discussions between agencies and DHS.

[…]

Tagged , , , , | Leave a comment

CIA Names Joseph Baich Chief Information Security Officer

The Central Intelligence Agency has named Joseph “Rich” Baich as the agency’s new chief information security officer (CISO).

[…]

Tagged , | Leave a comment

Cyber Central: NSA Official Calls Intel Sharing a Matter of Trust

Security information sharing between the Federal government and private sector has been on the rise recently – whether it’s through the Joint Cyber Defense Collaborative, or various Information Sharing and Analysis Centers across the government, to name just a few – and a National Security Agency (NSA) official said this week that increased collaboration is being driven by mission demand and a higher degree of trust between organizations.

[…]

Tagged , , | Leave a comment

USAF Kessel Run Moves to Approve New Acquisition Strategy

The United States Air Force’s (USAF) Kessel Run software factory has begun a new software acquisition strategy that consolidates 21 different programs under a single acquisition strategy, Kessel Run announced May 16.

[…]

Tagged , , , | Leave a comment

Feedback is ‘Critical’ as Acting FedRAMP Director Looks Ahead

As Acting Director of FedRAMP Brian Conrad looks ahead to the program’s fiscal year (FY) 2022 goals, he said gathering feedback from stakeholders will play a “critical” role in improving the program going forward.

[…]

Tagged , , , | Leave a comment

GAO Flags Data Quality, Cyber in State Dept. Recommendations

The Government Accountability Office (GAO) flagged 13 open recommendations for improvement for the State Department as of May 2022 in an annual report on the agency, including recommendations for improving data quality and cybersecurity.

[…]

Tagged , , | Leave a comment

IRS Should Strengthen Tax Relief Compliance Efforts, GAO Says

While the IRS complied with COVID-19 relief legislation to give tax breaks to employers who provided paid sick and family leave and retained employees, the Government Accountability Office (GAO) said in a new report that the tax agency could benefit from strengthening its compliance plans for those tax provisions.

[…]

Tagged , | Leave a comment

MeriTalking: What Happened This Week – Ep. 66

CISA issues emergency directive, DeRusha reports “tremendous progress” on cyber EO, MeriTalk publishes new research on CDM, and more.

[…]

Tagged | Leave a comment

Federal CISO DeRusha Previews Coming Security Policy Pushes

Chris DeRusha, who wears the dual hats of Federal Chief Information Security Officer (CISO) and Deputy National Cyber Director for Federal Cybersecurity in the Office of the National Cyber Director, charted some near-term policy goals on the security front during a keynote address on May 19 at MeriTalk’s Cyber Central May 2022 – Mission: Cyber Resilience in-person conference.

[…]

Tagged , , , , | Leave a comment

Cyber Central: Agencies Need to Approach Zero Trust Strategically

As President Biden’s cybersecurity executive order (EO) stretches past its first year, Federal agencies are at varied points in their progress on the EO’s orders. Federal leaders say it is important for agencies to approach the EO’s zero trust components strategically and understand their networks as they make the move to a zero trust architecture.

[…]

Tagged , , , , | Leave a comment

Industry Cyber Experts Share Elements to Success in Zero Trust

Implementing an effective zero trust architecture within an agency’s security framework has become pivotal to achieving cyber resiliency within the Federal government. But to be successful in the implementation of a zero trust architecture there are several elements agencies must keep in mind, according to several cyber experts.

[…]

Tagged , | Leave a comment

With 80 percent of every Federal IT dollar spent on life support for legacy systems, the Federal IT community is exploring new options to modernize and innovate – virtualization, cloud computing, Flash technology, software-defined options, shared services, and more. MeriTalk is staying close to the leaders on the front lines, bringing you new ideas and lessons learned.

And, as Federal IT leaders work to meet demands of an “always-on” highly mobile government, we bring you the stories and breaking news on balancing productivity with security. Our government IT news includes how agencies manage advanced persistent threats, and the steps that help guard against socially engineered threats. We look at the latest trends in malware, spyware, ransomware, and spear phishing. And – how can Federal agencies protect data from tomorrow’s cyber threats?

The MeriTalk “Industry Insider” column, offers a weekly news roundup of contracts and other activity in the Federal IT industry. Check with MeriTalk daily for the government technology news you need to know, or subscribe to get the latest stories delivered directly to your inbox. You’ll stay up to date with interesting and timely Federal IT stories on cybersecurity, big data, data center modernization, cloud, mobile, and other developments in your community – from what’s next for the MGT Act to the highly anticipated Federal IT revolving capital fund, MeriTalk brings you the trends and breaking IT news to help you modernize, innovate, and transform public sector technology and the missions you support.

Categories