The Cybersecurity and Infrastructure Security Agency (CISA) is in the process of building out its Joint Cyber Defense Collaborative (JCDC) office, and CISA Director Jen Easterly today said that while the office is being established based on the Cyberspace Solarium Commission recommendation of creating a joint collaborative planning office, the JCDC will be about more than just planning. […]
The Federal Communications Commission (FCC) announced it will open the application filing window for the Secure and Trusted Communications Networks Reimbursement Program on Oct. 29 and close it on Jan. 14, 2022. […]
The Department of Commerce is seeking comment on questions related to the development of regulations to govern process and procedures the Commerce Secretary will use to deter foreign malicious cyber actors’ use of U.S. Infrastructure as a Service (IaaS) products and investigate foreign malicious cyber actors. […]
The fiscal year (FY) 2022 National Defense Authorization Act (NDAA) passed the House of Representatives late Sept. 23 with a bipartisan 316-113 vote. Among the amendments are a number of tech provisions focusing heavily on cybersecurity, along with some focusing on the digital workforce, cloud, and AI. […]
Closer integration between cybersecurity teams and enterprise risk management staff could help Federal agencies avert catastrophic cyber breaches more effectively, according to a new study published on September 23 by the Partnership for Public Service and Deloitte. […]
With a growing number of advanced threats across the Federal landscape, Small Business Administration (SBA) Chief Technology Officer Sanjay Gupta, encouraged agencies to view cybersecurity as a “team sport” and a proactive sport to gain a better cyber posture. […]
The Technology Modernization Fund (TMF) got a $1 billion boost in March’s American Rescue Plan, and the TMF board saw a massive influx of TMF requests that it has been working on adjudicating. At a Senate Homeland Security and Governmental Affairs hearing today, Federal chief information security officer (CISO) Chris DeRusha updated senators on the status of that extra TMF funding. […]
As part of a government-wide effort to counter ransomware, the U.S. Department of the Treasury is taking robust actions to disrupt criminal networks and virtual currency exchanges responsible for laundering ransoms, encourage best cyber practices, and increase efficient and timely incident reporting to agencies. […]
After a two-day meeting that included deciding which amendments to the fiscal year (FY) 2022 National Defense Authorization Act (NDAA) will receive votes, the House Rules Committee ruled several cybersecurity provisions to see floor votes when the measure comes up. […]
It’s important to hold adversaries accountable for recent cyber incidents, but Carole House, the director of cybersecurity and secure digital innovation on the White House National Security Council (NSC) stressed that “we need to hold ourselves accountable to the shortcomings” at home as well. […]
Savannah River National Laboratory (SRNL) has opened a Critical Infrastructure, Industrial Control System Cybersecurity Laboratory at the Georgia Cyber Center. […]
A Senate Homeland Security Committee hearing brought together several experts from the intelligence community today to discuss the homeland security landscape 20 years after the terrorist attacks on Sept. 11, 2001. […]
The American Federation of Government Employees (AFGE) now supports Rep. Jimmy Panetta’s, D-Ca., National Defense Authorization Act (NDAA) amendment that would create a Civilian Cyber Reserve at the Department of Homeland Security (DHS), AFGE announced in a follow-up letter on Sept. 18. […]
The American Federation of Government Employees (AFGE) wrote the leaders of the House Rules Committee Sept. 15 to express their opposition to amendments to the fiscal year (FY) 2022 National Defense Authorization Act (NDAA) that would create a civilian cyber reserve program. […]
As we approach the home stretch for the two trillion-dollar-plus infrastructure bills that have consumed an extraordinary amount of legislative energy over the past few months, it’s easy to become confused. […]
With attacks on critical infrastructure increasing, Rep. Jim Langevin, D-R.I., chairman of the House Armed Services Subcommittee on Cyber, Innovative Technologies, and Information Systems, is calling for improved security of critical systems and increased cybersecurity collaboration among the private and public sector. […]
With fiscal year (FY) 2021 ending September 30, the House Rules Committee will be meeting on September 20 to decide which of the over 800 amendments filed for the FY2022 National Defense Authorization Act (NDAA) will get a floor vote. […]
Richard Bird is an Army veteran and an internationally recognized identity-centric security expert who has been a CIO and CISO and the global head of identity for JP Morgan Chase. Now, he is chief customer information officer for Ping Identity. […]
Proposed funding for a host of new tech-related spending projects are springing forth from new House committee legislative prints contributing to the $3.5 trillion reconciliation bill, and now it’s wait-and-see on which – if any – of them survive what is likely to be a free-wheeling House-Senate negotiation on the giant spending bill. […]
StateRAMP, the nonprofit formed earlier this year by leaders from state and local governments and the private sector to help state and local governments manage their third party supplier cybersecurity risks, has released the initial roster of its Authorized Vendor List (AVL). […]
Closer working partnerships between Federal cybersecurity authorities and the private sector hold the key to improving the U.S.’s ability to fend off and recover from the increasing wave of cyberattacks against U.S. targets including those from nation-states like Russia and China. […]
The Federal Communications Commission (FCC) announced today the 50 members of the reestablished Communications Security, Reliability, and Interoperability Council (CSRIC), which will be co-chaired by the Cybersecurity and Infrastructure Security Agency (CISA). […]
A recent report by the Aspen Institute found that despite existing efforts to improve diversity, equity, and inclusion (DEI), the cybersecurity field remains mostly homogenous among technical practitioners and policy thinkers. […]
The House Homeland Security Committee will mark up its portion of the legislative language for the $3.5 trillion reconciliation bill tomorrow, but the released text of the chairman’s amendment to the bill shows that Rep. Bennie Thompson, D-Miss., proposes to give the Cybersecurity and Infrastructure Security Agency (CISA) $856 million to fund various programs and operations expenses. […]
The Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency (CISA) announced today that cybersecurity veteran Kiersten Todt will be the agency’s next chief of staff. […]
The House Committee on Science, Space, and Technology completed the markup of its legislative language for the $3.5 trillion reconciliation package Sept. 9 and included in that measure nearly $1.2 billion of funding to the National Institute of Standards and Technology (NIST) for cybersecurity and other emerging tech research. […]
Industry groups are pressing Deputy Secretary of Defense Kathleen Hicks and the Department of Defense (DoD) to publicly reaffirm the Pentagon’s commitment to is Cybersecurity Maturity Model Certification (CMMC) program. […]
Adversaries have moved beyond malware to conduct more sophisticated cyberattacks, according to CrowdStrike’s 2021 Threat Hunting Report released this week. […]
As the military moves towards utilizing a Joint All Domain Command and Control (JADC2) data fabric across operations, the Army and other military departments are increasingly engaging in operations across multiple domains. In order to maintain staunch cybersecurity practices in these environments, the military must move to zero trust, Army CIO Raj Iyer said Sept. 8. […]
Now that the Office and Management and Budget (OMB) and the Cybersecurity and Infrastructure Security Agency (CISA) have released their new directives for Federal civilian agencies to move to zero trust security principles and expanded cloud adoption, what are some near-term steps that Federal IT and cybersecurity officials should think about as they get ready to put those directives into action? […]