The Trusted Internet Connections (TIC) 3.0 program office at the Cybersecurity and Infrastructure Security Agency (CISA) recently released its TIC 3.0 remote user case document, and a TIC 3.0 Cloud Use Case document is also in the works, program lead and CISA Senior Cybersecurity Architect Sean Connelly said today. […]

As Federal agencies approach the six-month mark since President Biden issued his Cybersecurity Executive Order (EO) in May, Federal officials are pointing to the zero trust, supply chain risk management, and data aspects of the EO as the greatest opportunities to make a difference in shoring up security. […]

Five months after the debut of the Biden administration’s sweeping Cybersecurity Executive Order, Federal agencies are “highly engaged” in grappling with the order’s mandate for migration to zero trust security architectures, both on the planning and funding fronts. […]

The transition to zero trust security architectures is integral to the U.S. Department of the Army’s modernization efforts, said Army CIO Raj Iyer during an FCW virtual roundtable on October 27 where he explained security challenges that the service branch is facing and how the move to zero trust security concepts will help. […]

Routinely, data breaches demonstrate the pitfalls of relying on detection to identify malicious activities taking place on a network. Federal cyber experts discussed the importance of prevention over detection to combat cyber threats and how zero trust can enhance cyber solutions on Oct 28 at an event hosted by FCW. […]

In the face of increasing cyberattacks on U.S. critical infrastructure and growing service demands on the electric grid, members of the Senate Homeland Security and Governmental Affairs Committee’s Government Operations and Border Management Subcommittee discussed the need for greater Federal investments in protecting the grid and ensuring abundant power supplies at an October 27 hearing. […]

With an evolving cyber threat landscape and adversaries that are growing more sophisticated by the day, National Security Agency (NSA) Director Gen. Paul Nakasone – who also heads United States Cyber Command (CYBERCOM) – today pointed to partnership and collaboration as the best way to protect the nation from cyber threats. […]

Long-time Federal government IT and cybersecurity leader Karen Evans is heading to the Cyber Readiness Institute (CRI) – a New York-based nonprofit that aims to advance the cyber readiness of small and medium-sized businesses in order to improve the security of global supply chains – as the organization’s managing director. […]

After fits and starts reaching back over the last two years, the State Department has unveiled plans to establish a new Bureau of Cyberspace and Digital Policy, along with an envoy for critical and emerging technology, State Department spokesperson Ned Price announced at a press briefing this week. […]

Microsoft is warning that it has seen Nobelium – the Russian nation-state threat group responsible for the SolarWinds software supply chain hack – trying to recreate the same approach that allowed it to gain access to Federal government systems, according to an Oct. 24 blog post from the company. […]

With cyberattacks on the rise, Rep. Don Bacon, R-Neb., introduced legislation in the House this week that would require the secretary of the Department of Homeland Security (DHS) to assess the agency’s cybersecurity incident response procedures and propose improvements. […]

An official at the Cybersecurity and Infrastructure Security Agency (CISA) is applauding the work of a private cybersecurity firm that, in collaboration with CISA, helped victims of the BlackMatter ransomware group, according to a new report from the New York Times. […]

The White House appointed Jonah Force Hill, a longtime cyber advisor and strategist, to become the National Security Council’s (NSC) Director of Cybersecurity and Emerging Tech Policy, according to Hill’s LinkedIn. […]

The House of Representatives passed the DHS Software Supply Chain Risk Management Act of 2021 this week with a 412-2 vote. […]

Dr. Laurie Locascio, the White House’s nominee to be the next director of the National Institute of Standards and Technology (NIST), told senators this week that she will prioritize cybersecurity of internet of things (IoT) devices, and bridging the cyber workforce gap if she is confirmed to head the agency. […]

Nickolas Guertin, who President Biden nominated to be the Department of Defense’s (DoD) next director of Operational Test and Evaluation (DOT&E), sees testing for cyber threats and building cyber testing into the test and evaluation process a priority for the next DOT&E. […]

The Department of Homeland Security (DHS) has taken on a number of recent initiatives to build a diverse cyber workforce, which DHS Secretary Alejandro Mayorkas and Cybersecurity and Infrastructure Security Agency (CISA) Director Jen Easterly outlined today during the third week of the CISA Cybersecurity Summit. […]

The Cybersecurity and Infrastructure Security Agency (CISA) announced today that it has awarded $2 million to bring cybersecurity training programs to rural communities and diverse populations. […]

The Senate Appropriations Committee released nine appropriations bills for fiscal year (FY) 2022 on October 18 including a Homeland Security funding bill that would give the Cybersecurity and Infrastructure Security Agency (CISA) a 30 percent budget increase over FY2021 levels, to $2.638 billion. […]

Agency (CISA) provides insight into what Federal buyers will be looking for in technology central to the Biden-Harris administration’s network visibility-focused cybersecurity executive order, specifically on network endpoint detection and response (EDR) capabilities. […]

The Treasury Department released a new report that found ransomware victims paid $590 million during the first six months of 2021, which is more than the value reported for the entirety of 2020 ($416 million). […]

The Department of Homeland Security’s (DHS) Cybersecurity and Infrastructure Security Agency (CISA) released a joint advisory on Oct. 18 warning organizations that the BlackMatter ransomware group is targeting U.S. critical infrastructure entities. […]

In the new era of cyber defense, Ted Okada, chief technology officer (CTO) at the Federal Emergency Management Agency (FEMA), stressed that IT leaders must take the right risks to lead their teams in risk management efforts. […]

Democrats in both the House and Senate have introduced bills to fund a cybersecurity grant education program at Historically Black Colleges and Universities (HBCUs) and Minority Serving Institutions (MSIs).      […]

The Department of Homeland Security’s (DHS) Cybersecurity and Infrastructure Security Agency (CISA) released a joint cyber advisory Oct. 14 warning of an ongoing cyber threat to U.S. Water and Wastewater Systems (WWS) facilities and gave the WWS sector recommended mitigations. […]

Research from MeriTalk shows that 83 percent of government cybersecurity leaders say their organization operates on an “assume breach” model – assuming their networks have already been breached, or will be. However, cybersecurity experts stress that it’s equally important to put efforts into breach prevention, which involves crucial steps such as identifying all network assets. […]

The Consumer Finance Protection Bureau (CFPB) announced Oct. 13 that Erie Meyer, a founding member of the agency’s tech and innovation team, will return to CFPB as its next chief technologist. […]

The Department of Homeland Security’s (DHS) Cybersecurity and Infrastructure Security Agency (CISA) hired Lt. Col. Jody Ogle, longtime cybersecurity and IT expert, as a cybersecurity advisor at the agency. […]

While Federal government cybersecurity dominates news headlines this year – from the Biden administration’s executive order (EO) to the spate of high-profile attacks on government and private sector targets – Federal government chief information security officers emphasized this week the importance of tried and true best practices, current tooling, and workforce education in the campaign to improve defenses. […]

The White House charted progress today following the conclusion of its two-day virtual Ministers and Representatives from the Counter Ransomware Initiative Meeting, and outlined several priority efforts to reduce the risk of ransomware attacks globally. […]