The National Institute of Standards and Technology (NIST) has put together a concept paper with proposed revisions to its Cybersecurity Framework (CSF) and is looking for input on the changes before it crafts a draft of CSF 2.0. […]
Federal Communications Commission (FCC) Chairwoman Jessica Rosenworcel warned in a Jan. 17 speech that the deployment of fifth-generation (5G) wireless communications networks involves big security and privacy challenges. […]
The U.S. Department of Health & Human Services (HHS) plans to release updated cybersecurity guidance for the healthcare industry along with an agency-wide data strategy in the upcoming weeks, according to Karl Mathias, chief information officer (CIO) at HHS. […]
The Cybersecurity and Infrastructure Security Agency (CISA) released its 2022 Year in Review report this week, highlighting the agency’s increased collaboration with industry partners. […]
The National Archives and Records Administration (NARA) today published an update to the government’s records retention rules, which provides Federal agencies with new instructions on how long to hang on to cybersecurity logs. […]
Three Senate Democrats outlined their tech priorities for this year at the CES 2023 technology conference in Las Vegas on Jan. 6, with cybersecurity and investments in tech advancements topping that list. […]
The U.S. Patent and Trademark Office (USPTO) is looking for a contractor to perform red team penetration testing on USPTO systems as the organization looks to continue improving its cybersecurity posture and protect its data, according to a Jan. 4 request for information (RFI). […]
The nation’s path to sustainable cybersecurity improvement lies in improving technology security by design, and achieving better communication between industry and government, said Jen Easterly, director of the Cybersecurity and Infrastructure Security Agency (CISA), during an address today at the CES 2023 technology conference in Las Vegas. […]
President Biden signed into law on Dec. 27 the Strengthening VA Cybersecurity Act of 2022, which requires the Department of Veterans Affairs (VA) to obtain an independent cybersecurity assessment of its most critical information systems, as well as its cyber posture as a whole. […]
President Biden on Dec. 27, 2022, signed into law the Small Business Cyber Training Act, which requires the Small Business Administration (SBA) to boost its ability to provide cyber planning training, and be more proactive in protecting data and requiring greater transparency of threats and breaches that occur. […]
Technology suppliers to the Federal government are telling MeriTalk that they expect to see Federal agencies place increasing emphasis on IT modernization efforts in 2023, along with continuing efforts to boost cybersecurity protections that modernized systems can help to achieve. […]
From ensuring the nation’s voting infrastructure was secure in preparation for election season to developing strategies and goals to support critical infrastructure owners and operators, boosting the nation’s cyber posture was among many Federal agencies’ top priorities for 2022. […]
The new year in cybersecurity is likely to feature at least one old problem – shortages of skilled cyber professionals – but also progress in areas like zero trust security, cloud adoption, and continued adoption of enterprise IT approaches. […]
Cloud security provider Zscaler said this week that it has joined the Joint Cyber Defense Collaborative (JCDC), which was created last year by the Cybersecurity and Infrastructure Security Agency (CISA) to unify the efforts of cyber defenders from organizations around the world. […]
The Department of Homeland Security (DHS) has several initiatives underway to help U.S. critical infrastructure providers reduce risks – with partnerships between the public and private sectors positioned as the key to ensuring success of those initiatives, an agency official said this week. […]
President Biden today signed into law legislation to set the Federal government on the path to defending against quantum computing-enabled data breaches that will become more of a threat as quantum tech advances in the coming years. […]
One of the Cybersecurity and Infrastructure Security Agency’s (CISA) mainstay cybersecurity protection programs got an extended lease on life, along with $91 million of funding, in the fiscal year (FY) 2023 omnibus appropriations bill released by the House and Senate Appropriations committees on Dec. 20. […]
The Cybersecurity and Infrastructure Security Agency (CISA) is in line to receive a 12 percent funding increase under Fiscal Year 2023 appropriations legislation unveiled today – a spending hike that Capitol Hill leaders said will help the agency boost its ability to prevent cyberattacks and secure critical infrastructure. […]
The Centers for Medicare & Medicaid Services (CMS) is responding to a data breach at Healthcare Management Solutions, LLC (HMS) – a subcontractor to CMS – that may have exposed personally identifiable information of up to 254,000 Medicare beneficiaries. […]
The Office of Management and Budget (OMB) has released a new “progress report” on the state of cybersecurity across Federal agencies, just in time for the 15th edition of the FITARA Scorecard issued today by the House Oversight and Reform Committee. […]
To help fend off ever-increasing cyberattacks, Splunk is helping organizations to build a foundation of cyber resilience so they can have visibility into cyber threats, accelerate operations, and meet their mission. […]
The private and public sectors are coming together to beat back bad actors, and that public-private partnership is something that cybersecurity experts on Dec. 8 said is “vital” to better protect data across the board. […]
The House on Dec. 7 unanimously voted to pass legislation that requires the Small Business Administration (SBA) to improve its cyber defenses; the bill now heads to President Biden’s desk for his signature. […]
The Fiscal Year (FY) 2023 National Defense Authorization Act (NDAA) bill released by the House Rules Committee late Tuesday evening features numerous provisions designed to bolster cyber capabilities and operations not only at the Defense Department (DoD), but at other Federal agencies as well. […]
Cybersecurity and Infrastructure Security Agency (CISA) Director Jen Easterly wants the agency’s Cybersecurity Advisory Committee (CSAC) to stand up a new subcommittee focused on corporate cyber responsibility as part of a move to build a cyber “civil defense” capacity. […]
Federal agencies have until September 30, 2023, to report at least 80 percent of their IT systems through the Cybersecurity and Infrastructure Security Agency’s (CISA) Continuous Diagnostics and Mitigation (CDM) program, according to an OMB Federal Information Security Modernization Act (FISMA) guidance issued on Dec. 2. […]
Google announced on Dec. 1, it’s reinforcing its commitment to support Ukraine in its war conflict with Russia by announcing new steps that the company is taking to support Ukraine. […]
Instead of requiring cybersecurity employees to have a four-year college degree, the Department of Defense (DoD) is encouraging the hiring of qualified applicants who have gained cyber qualifications through apprenticeship programs, or other similar training programs. […]
A team of government-contracted “red team” hackers managed to gain unauthorized and undetected control of critical Census Bureau systems in a simulated attack test revealing major cybersecurity weaknesses within the Federal agency, according to a new report by the Commerce Department Office of Inspector General (IG). […]
The General Services Administration (GSA) filed a request for information (RFI) on behalf of the Cybersecurity and Infrastructure Security Agency (CISA) to gather industry feedback on a potential cyber threat intelligence exchange platform. […]