The FBI fell far short of its own goals for fighting cybercrime in 2017, according to a Department of Justice (DOJ) audit. The FBI reported disrupting or dismantling 262 high-level criminal operations targeting global U.S. interests, only about half of its goal of 500, and roughly one-tenth of the 2,492 cybercrime operations it broke up in 2014. […]
The Government Accountability Office (GAO) isn’t just a compiler of Fed IT’s naughty and nice lists–the agency’s also a consumer of IT. And, it’s rolling plans for IT modernization. […]
It’s a converged world for many Federal data centers, and that trend is likely to continue as agencies move to modernize their information technology infrastructures. […]
House Cybersecurity and Infrastructure Protection Subcommittee chairman Rep. John Ratcliffe, R-Texas, put the Continuous Diagnostics and Mitigation (CDM) program under the microscope in a hearing with industry experts last week. […]
Thousands of Federal contractors could find themselves scrambling to comply with stringent cybersecurity requirements after the General Services Administration (GSA) announced it is tightening the rules for protecting sensitive, non-classified data. […]
Federal agencies are accepting some harsh criticism being doled out in a new report that says many are failing to fully comply with guidelines designed to protect against wasted IT spending. […]
We see lots of moves to IT modernization in motion–but how does it all come together? The White House wants to tie those into a broader program, creating a new ecosystem to fuel government-wide modernization efforts. […]
The Federal government wants to speed up adoption of cloud email and collaboration systems. But first it needs an accurate measure of how many agencies have not yet migrated to cloud email. There is definitive data on the benefits of cloud-based email solutions among CFO Act agencies, but no clear data regarding the adoption of cloud-based solutions at small and independent agencies, according to the Report to the President on Federal IT Modernization. […]
The Report to the President on Federal IT Modernization recommends modernizing the Trusted Internet Connections (TIC) program, which is critical to the Federal government’s broader digital transformation strategy. By the end of this month, the report calls for the Office of Management and Budget (OMB) to conduct data calls to agencies to discuss their cloud migration projects, and identify any delays caused by current TIC policy. And, by March 2, OMB will share a “preliminary update to the TIC policy,” and launch select pilot projects to test the new TIC requirements. […]
The rising frequency and intensity of cyberattacks on information technology systems that support the government, military, businesses, and critical infrastructure has raised awareness among senior Federal agency managers that security controls cannot be bolted on to systems as an afterthought. Security must be a core part of the design of systems from the beginning, and considered throughout the development lifecycle. […]
Dominic Sale, the fella that heads up GSA’s IT policy-to-implementation portfolio as Deputy Associate Administrator, Information Integrity and Access (I2A), is moving on up. […]
The General Services Administration’s (GSA) Emerging Citizen Technology Office (ECTO) is working with a network of partners from more than 300 Federal, state, and local government entities to help evaluate, test, and implement IT modernization initiatives with emerging technologies. […]
If you’re looking for reference material on domestic sludge, gold nanoparticles, or peanut butter, a move by the National Institute of Standards and Technology (NIST) to modernize its e-commerce portal should make it easier to get the information you’re seeking. […]
President Donald Trump last week issued an Executive Order on veterans’ health care that included an announcement that the Department of Veterans Affairs (VA) would adopt the same electronic records systems as the Department of Defense (DoD), signing off on what was already a done deal. Emphasis on “deal,” because although the departments are on board with a project that could cost $10 billion over 10 years, history raises doubts as to whether a unified health records system can actually be achieved. […]
The MGT Act became the law of the land on Dec. 21, when President Trump signed it into law as part of the National Defense Authorization Act (NDAA). This is the much-vaunted revolving capital fund–cut out of the original FITARA bill in committee–that establishes a central bucket of money at the Office of Management and Budget (OMB), managed by the General Services Administration (GSA), for Feds to modernize legacy IT systems. […]
North Korea’s persistent efforts on nuclear weapons development and some loose talk about red buttons have raised new fears internationally about the possibilities of nuclear conflict. At home, government agencies also are addressing the questions about what to do in the case of a nuclear detonation. The Centers for Disease Control and Prevention (CDC), for example, will hold one of its Public Health Grand Round teaching sessions Jan. 16 on how medical professionals should respond–and although the event has been planned for months, it’s timing suddenly seems to be on the mark. […]
Usually agencies want to speak highly of their IT operating systems, so to hear Deputy Secretary of the United States Department of Agriculture (USDA) Steve Censky call the USDA operating model “splintered and out of date” on Dec. 14 was a bit of a shock. […]
Despite an air of uncertainty coming from the Trump administration, the Department of Energy’s research arm is forging ahead with what it calls “transformational research,” putting up $100 million to try to ensure that it doesn’t miss a trick when it comes to potentially disruptive energy research. […]
Password manager company, Dashlane, has added a twist with its list of the “Worst Password Offenders” of 2017, naming high-profile people and organizations that fell into the bad-password trap. President Trump was deemed the worst offender, primarily because of simple passwords reportedly used by cabinet members and policy directors. Outside parties were also the culprits for the Department of Defense, specifically for its contractor, Booz Allen, as well as the Republican Party (stemming from a careless data analytics firm). Paul Manafort, for using “Bond007” as a password, and Sean Spicer, for apparently tweeting his passwords, also came in for scorn. […]
Email is a core network application for both the private sector the and government, and has become an essential business communication tool. Since email is nearly ubiquitous and often poorly secured, it also has become a vector for fraud and data theft. Phishing emails can compromise not only Federal networks and databases, but also trust in government communications. […]
Last July, the Federal Risk and Authorization Management Program (FedRAMP) revamped the provisional authorization process to make life easier for cloud service providers (CSPs). The change let CSPs use a simple web form to delineate their business cases to FedRAMP’s Joint Authorization Board (JAB). […]
In a report released on Dec. 7, the Government Accountability Office (GAO) reported that while Veterans Affairs (VA) has made some progress on key IT initiatives under Federal Information Technology Acquisition Reform Act (FITARA) requirements, it has nonetheless fallen short of Office of Management and Budget (OMB) targets regarding consolidating and optimizing its data centers. […]
The White House wants to clear the way for Federal agencies to adopt commercial cloud computing, even if that means tweaking acquisition rules to help them get there. […]
Since 2001, the Department of Veterans Affairs (VA) has tried three different modernization programs for its healthcare system. So when the department announced another plan to modernize by adopting the same system as the Department of Defense (DoD), the Subcommittee on Information Technology was skeptical and interrogated them in a Dec.7 hearing. […]
Bruce Greenstein, Department of Health and Human Services (HHS) CTO knows Feds need help combating the Opioid crisis. That’s why HHS convened the Opioid Symposium last week at the Hubert H. Humphrey Building, bringing Federal, state and industry players together to brainstorm on one of the nation’s toughest issues. Fourteen sessions later, and sharing data, innovating, communicating, and remembering the human impacts emerged as the key takeaways. […]
In the seven years since it was launched, the General Services Administration’s (GSA) Challenge.gov platform has demonstrated that crowdsourcing can be a winning approach to problem solving in government. […]
The National Institute of Standard and Technology (NIST) released the second draft of the proposed update to its Framework for Improving Critical Infrastructure Cybersecurity. The new draft aims to clarify, refine, and enhance the framework as well as “amplifying its value and making it easier to use,” NIST officials said. […]
With rapid growth in smart devices, exploding data volumes, and the shift to the cloud, it is becoming more and more challenging to protect critical systems and information. Government and industry leaders convened at the Symantec Government Symposium in Washington, D.C. on Tuesday to discuss these complex challenges and the solutions needed to address them. […]
The Centers for Medicare and Medicaid Services (CMS) need to more fully align its antifraud efforts with the Government Accountability Office’s (GAO) Fraud Risk Framework, GAO auditors said in a report released Dec. 5. CMS’s anti-fraud programs currently align only partially with the risk framework, GAO’s investigation revealed. […]
SBA has made it a priority to provide cybersecurity assistance for small businesses, reaching out to local chambers of commerce, technology vendors, and banks that serve small businesses to raise awareness of the benefits of cybersecurity threat prevention sharing through conferences. […]