The acting manager of the Cybersecurity and Infrastructure Security Agency’s (CISA) Continuous Diagnostics and Mitigation (CDM) program is hailing quick progress that the program and Federal agencies have made in signing new agreements mandated by the Biden administration’s Cybersecurity Executive Order to share object-level network data with the CDM program, rather than the summary-level data that was previously required. […]

As Democrats in the House and Senate reconcile differences on the slimmed-down $1.75 billion budget reconciliation bill that funds “soft” infrastructure priorities, some tech and cyber-related provisions have fallen out of the bill or had their funding levels slashed, while others made new appearances into the latest draft of the bill, which has been cut down from its original $3.5 trillion price tag. […]

Legislative and Federal policy efforts are coming together to focus on protecting the top-most tiers of critical infrastructure in the United States, top officials from the House and the Cybersecurity and Infrastructure Security Agency (CISA) agreed today.  […]

The National Security Agency (NSA) and the Cybersecurity and Infrastructure Security Agency (CISA) published cybersecurity guidance to securely build and configure cloud infrastructures in support of 5G. […]

The future of developing the Federal cybersecurity workforce could rely on apprenticeships to fill the talent pipeline and improve retention in cyber roles. […]

In addition to facing cyber threats from nation-states, both government and private organizations have been the victims of an increased volume of ransomware attacks from criminal organizations over the last two years. A Central Intelligence Agency (CIA) official emphasized this week that organizations need to be on the lookout for any suspicious activity on their systems in order to guard against the uptick in ransomware attacks. […]

The threat landscape has shifted drastically amid the COVID-19 pandemic as more and more organizations and governments deal with emerging cyberattacks and ransomware threats. Pure Storage, an IT leader delivering a portfolio of modern data solutions and services, has continued to provide organizations with innovative solutions to mitigate these threats with its portfolio of data protection tools. […]

Chris Inglis, the nation’s first-ever National Cyber Director, is building out his office with an inaugural strategic intent statement, as well as the addition of Federal Chief Information Security Officer (CISO) Chris DeRusha who will have a dual designation as the deputy national cyber director for Federal cybersecurity. […]

The Trusted Internet Connections (TIC) 3.0 program office at the Cybersecurity and Infrastructure Security Agency (CISA) recently released its TIC 3.0 remote user case document, and a TIC 3.0 Cloud Use Case document is also in the works, program lead and CISA Senior Cybersecurity Architect Sean Connelly said today. […]

As Federal agencies approach the six-month mark since President Biden issued his Cybersecurity Executive Order (EO) in May, Federal officials are pointing to the zero trust, supply chain risk management, and data aspects of the EO as the greatest opportunities to make a difference in shoring up security. […]

Five months after the debut of the Biden administration’s sweeping Cybersecurity Executive Order, Federal agencies are “highly engaged” in grappling with the order’s mandate for migration to zero trust security architectures, both on the planning and funding fronts. […]

The transition to zero trust security architectures is integral to the U.S. Department of the Army’s modernization efforts, said Army CIO Raj Iyer during an FCW virtual roundtable on October 27 where he explained security challenges that the service branch is facing and how the move to zero trust security concepts will help. […]

Routinely, data breaches demonstrate the pitfalls of relying on detection to identify malicious activities taking place on a network. Federal cyber experts discussed the importance of prevention over detection to combat cyber threats and how zero trust can enhance cyber solutions on Oct 28 at an event hosted by FCW. […]

In the face of increasing cyberattacks on U.S. critical infrastructure and growing service demands on the electric grid, members of the Senate Homeland Security and Governmental Affairs Committee’s Government Operations and Border Management Subcommittee discussed the need for greater Federal investments in protecting the grid and ensuring abundant power supplies at an October 27 hearing. […]

With an evolving cyber threat landscape and adversaries that are growing more sophisticated by the day, National Security Agency (NSA) Director Gen. Paul Nakasone – who also heads United States Cyber Command (CYBERCOM) – today pointed to partnership and collaboration as the best way to protect the nation from cyber threats. […]

Long-time Federal government IT and cybersecurity leader Karen Evans is heading to the Cyber Readiness Institute (CRI) – a New York-based nonprofit that aims to advance the cyber readiness of small and medium-sized businesses in order to improve the security of global supply chains – as the organization’s managing director. […]

After fits and starts reaching back over the last two years, the State Department has unveiled plans to establish a new Bureau of Cyberspace and Digital Policy, along with an envoy for critical and emerging technology, State Department spokesperson Ned Price announced at a press briefing this week. […]

Microsoft is warning that it has seen Nobelium – the Russian nation-state threat group responsible for the SolarWinds software supply chain hack – trying to recreate the same approach that allowed it to gain access to Federal government systems, according to an Oct. 24 blog post from the company. […]

With cyberattacks on the rise, Rep. Don Bacon, R-Neb., introduced legislation in the House this week that would require the secretary of the Department of Homeland Security (DHS) to assess the agency’s cybersecurity incident response procedures and propose improvements. […]

An official at the Cybersecurity and Infrastructure Security Agency (CISA) is applauding the work of a private cybersecurity firm that, in collaboration with CISA, helped victims of the BlackMatter ransomware group, according to a new report from the New York Times. […]

The White House appointed Jonah Force Hill, a longtime cyber advisor and strategist, to become the National Security Council’s (NSC) Director of Cybersecurity and Emerging Tech Policy, according to Hill’s LinkedIn. […]

The House of Representatives passed the DHS Software Supply Chain Risk Management Act of 2021 this week with a 412-2 vote. […]

Dr. Laurie Locascio, the White House’s nominee to be the next director of the National Institute of Standards and Technology (NIST), told senators this week that she will prioritize cybersecurity of internet of things (IoT) devices, and bridging the cyber workforce gap if she is confirmed to head the agency. […]

Nickolas Guertin, who President Biden nominated to be the Department of Defense’s (DoD) next director of Operational Test and Evaluation (DOT&E), sees testing for cyber threats and building cyber testing into the test and evaluation process a priority for the next DOT&E. […]

The Department of Homeland Security (DHS) has taken on a number of recent initiatives to build a diverse cyber workforce, which DHS Secretary Alejandro Mayorkas and Cybersecurity and Infrastructure Security Agency (CISA) Director Jen Easterly outlined today during the third week of the CISA Cybersecurity Summit. […]

The Cybersecurity and Infrastructure Security Agency (CISA) announced today that it has awarded $2 million to bring cybersecurity training programs to rural communities and diverse populations. […]

The Senate Appropriations Committee released nine appropriations bills for fiscal year (FY) 2022 on October 18 including a Homeland Security funding bill that would give the Cybersecurity and Infrastructure Security Agency (CISA) a 30 percent budget increase over FY2021 levels, to $2.638 billion. […]

Agency (CISA) provides insight into what Federal buyers will be looking for in technology central to the Biden-Harris administration’s network visibility-focused cybersecurity executive order, specifically on network endpoint detection and response (EDR) capabilities. […]

The Treasury Department released a new report that found ransomware victims paid $590 million during the first six months of 2021, which is more than the value reported for the entirety of 2020 ($416 million). […]

The Department of Homeland Security’s (DHS) Cybersecurity and Infrastructure Security Agency (CISA) released a joint advisory on Oct. 18 warning organizations that the BlackMatter ransomware group is targeting U.S. critical infrastructure entities. […]