The Cybersecurity and Infrastructure Security Agency (CISA) remains highly confident in the agency’s efforts to defend against nation-state cyber threats including those targeting U.S. elections and supply chains, a senior CISA official said today.
A bipartisan group of members of the House Energy and Commerce Committee introduced a bill today to provide $1 billion in aid to remove prohibited equipment from the networks of small communications providers and prevent the usage of Federal funds for “any company that poses a national security risk to American communications networks.”
The U.S. Department of Homeland Security’s (DHS Cybersecurity and Infrastructure Security Agency (CISA) released the Information and Communications Technology (ICT) Supply Chain Risk Management Task Force’s first interim report, which details the groups’ progress since its formation.
Federal and Defense officials spoke at today’s Billington Cybersecurity Summit about procurement cybersecurity challenges they face and the initiatives they’ve launched to combat those hurdles by shifting toward a “security first” approach to acquisition and supply chain management.
The Department of Veterans Affairs (VA) and Defense Department’s (DoD) Defense Logistics Agency (DLA) announced that they began a strategic partnership Aug. 12 to aid the VA in its supply chain management modernization efforts.
The National Nuclear Security Administration (NNSA) is not using its authority to exclude suppliers that pose a threat to its supply chain. While the agency is working on drafting recommendations to improve the usefulness of its authorities, it keeps pushing back when it will actually complete the recommendations, according to an August 8 report from GAO.
The Federal Acquisition Regulation will ban agencies from procuring equipment from five Chinese companies, including Huawei and ZTE, starting August 13, according to an interim rule published August 7.
Risk management in the modern age is largely about cyber hygiene, said Wanda Jones-Heath, Chief Information Security Officer (CISO) for the U.S. Air Force’s Office of the Deputy CIO, today.
The Acting Director of the Office of Management and Budget (OMB) Russell Vought wrote a letter to Vice President Mike Pence, House Speaker Nancy Pelosi, D-Calif., and eight other members of Congress asking for a two-year delay of a ban that prohibits U.S. government contractors from doing business with Chinese-telecommunications company Huawei, in an effort to give companies more time to comply with the legislation.
China-based network equipment maker Huawei filed a motion for summary judgement in ongoing litigation with the U.S. government in the U.S. District Court for the Eastern District of Texas challenging the constitutionality of Section 889 of the 2019 National Defense Authorization Act (NDAA) under which the Federal government is barred from buying Huawei equipment and services.
For the Cybersecurity Infrastructure Security Agency (CISA) within the Department of Homeland Security (DHS) and General Services Administration (GSA), acquisition of new technologies and methodologies requires making sure that all the right processes and controls are in place.
The Department of Veteran Affairs’ (VA’s) Veterans Benefits Administration (VBA) failure to modify its electronic systems to fully support the Forever GI Bill hampered efforts to implement the law early in the process and continue to the present day, according to a VA Office of the Inspector General (OIG) report released today.
Software-maker trade group BSA sent a letter to leaders of the House and Senate Armed Services Committees on Thursday urging modernization of the Department of Defense’s (DoD) supply chain security and software acquisition approach in the FY 2020 National Defense Authorization Act.
Senators and witnesses alike took turns criticizing Chinese tech and trade policy, and China-based network equipment maker Huawei, at a hearing on Thursday over the firm’s alleged potential to create security harms if its equipment was included in U.S. 5G wireless networks.
Cybersecurity and Infrastructure Security Agency (CISA) director Christopher Krebs said that a strategic risk assessment of 5G technology would be completed within “a couple months” at the RSA Conference in San Francisco on Tuesday.
Sens. Mark Warner, D.-Va., and Marco Rubio, R-Fla., introduced legislation on Friday to create an Office of Critical Technologies & Security at the White House to coordinate action across Federal agencies and develop a “whole of government” strategy to combat theft of U.S. technologies by state actors including China, and to reduce risks to “critical supply chains.”
The Senate on Dec. 18 approved by unanimous consent S. 3085, the Federal Acquisition Supply Chain Security Act. This bill, according to its text, would “establish a Federal Acquisition Security Council and … provide executive agencies with authorities relating to mitigating supply chain risks in the procurement of information technology.”
The Department of Homeland Security on Oct. 30 announced launch of the Information and Communications Technology (ICT) Supply Chain Risk Management Task Force, which the agency said is charged with developing “consensus recommendations” to identify and manage risk to the global ICT supply chain.
Regardless of whether Chinese hackers really did infiltrate more than two dozen U.S. companies and multiple government agencies through a supply-chain hardware hack, the bombshell report by Bloomberg Businessweek throws light on an ongoing problem facing the Department of Defense, among others.
The House of Representatives on Tuesday agreed by voice vote to approve HR 6430, the Securing the Homeland Security Supply Chain Act of 2018, which grants the Department of Homeland Security (DHS) Secretary authority to exclude certain contractors from doing business with the Federal government to address “urgent national security interests” and curb supply chain risks.