The Cybersecurity and Infrastructure Security Agency (CISA) will unveil its secure-by-design guiding principles tomorrow, CISA Director Jen Easterly said during the Crowdstrike Government Summit in Washington, D.C., this week. […]
Tags
CISA
The Cybersecurity and Infrastructure Security Agency (CISA) today published an updated, second version of its Zero Trust Maturity Model that is guiding Federal agencies and other organizations along the path to adopting zero trust security architectures. […]
Rep. Eric Swalwell, D-Calif., is planning to introduce legislation to clarify the role of the Cybersecurity and Infrastructure Security Agency’s (CISA) Joint Cyber Defense Collaborative (JCDC) program and criteria for membership in the group. […]
In a new report, the Government Accountability Office (GAO) is asking the Cybersecurity and Infrastructure Security Agency (CISA) to develop time frames on when it will complete its work in helping sector risk management agencies (SRMAs) to implement their fiscal year (FY) 2021 National Defense Authorization Act (NDAA) responsibilities. […]
The Cybersecurity and Infrastructure Security Agency (CISA) on March 21 released stakeholder-driven updates to the Cybersecurity Performance Goals (CPGs) for critical infrastructure entities and businesses that the agency issued last year. […]
The Cybersecurity and Infrastructure Security Agency (CISA) and the National Security Agency (NSA) released new guidance on March 21 that offers system administrators best practices for identity and access management (IAM). […]
The?Cybersecurity and Infrastructure Security Agency (CISA) said late Wednesday that it has accepted in whole or in part 29 recommendations put forth by its Cybersecurity Advisory Committee (CSAC), which was created to provide cybersecurity recommendations to CISA Director Jen Easterly. […]
Cybersecurity and Infrastructure Security Agency (CISA) Director Jen Easterly today announced the appointment of new members to the CISA Cybersecurity Advisory Committee (CSAC), who will help advise her on policies and initiatives to bolster the nation’s cybersecurity posture. The announcement comes just in time for the committee’s next meeting, which will be held virtually tomorrow, […]
The Cybersecurity and Infrastructure Security Agency (CISA) is expanding its Mobile App Vetting (MAV) beta service that allows the agency to help combat the use of “bad applications” that can expose cybersecurity flaws for agencies. […]
The Cybersecurity and Infrastructure Security Agency said on March 15 that multiple attackers were able to compromise a system at one unnamed Federal civilian executive branch agency from November 2022 to January 2023, and issued an advisory for other organizations to take action to mitigate any similar vulnerability. […]
The Cybersecurity and Infrastructure Security Agency (CISA) announced on Monday its new Ransomware Vulnerability Warning Pilot (RVWP) to warn critical infrastructure entities of vulnerabilities commonly associated with known ransomware exploitation. […]
The Cybersecurity and Infrastructure Security Agency (CISA) and Girl Scouts of the USA (GSUSA) announced they will collaborate to bring more women into the cybersecurity workforce to bridge the gender gap. […]
Rep. Mark Green, R-Tenn., chairman of the House Homeland Security Committee, today pledged that his committee will conduct tough oversight of the Cybersecurity and Infrastructure Security Agency (CISA) to ensure that the agency “responsibly” carries out its mission without branching into excessive regulation. […]
The Cybersecurity and Infrastructure Security Agency (CISA) is considering turning its current Trusted Internet Connections (TIC) program office into an office that supports Federal agencies as they pursue requirements from CISA and the Office of Management and Budget (OMB) to migrate to zero trust security architectures. […]
The Biden administration’s fiscal year (FY) 2024 budget request issued today by the White House features a proposed $200 million addition to the Technology Modernization Fund (TMF), and a 4.9 percent annual budget increase for the Cybersecurity and Infrastructure Security Agency (CISA). […]
As agencies begin work to implement the Biden administration’s brand new national cyber strategy, the chief information officer (CIO) of the Cybersecurity and Infrastructure Security Agency (CISA) said he’s most excited that the strategy calls on the Federal government to diversify the cybersecurity workforce. […]
The Cybersecurity and Infrastructure Security Agency (CISA) has launched a brand new website, making tools easier to find for users and incorporating the former US-CERT website. […]
The director of the Cybersecurity and Infrastructure Security Agency (CISA) is calling out technology manufacturers for failing to create tech products that put the safety of customers first, and is calling for a new secure-by-design, secure-by-default cybersecurity model. […]
Democratic members of the House Homeland Security Committee are calling on Federal domestic security agencies to provide them with more information on “racially- or ethnically-motivated violent” cyberattacks to the nation’s critical infrastructure. […]
The Cybersecurity and Infrastructure Security Agency (CISA) is considering letting a three-year consulting contract that will help the agency develop strategies against new and emerging technologies. […]
A new report by the U.S. Government Accountability Office (GAO) recommends that the Cybersecurity and Infrastructure Security Agency (CISA) should implement time frames to complete its sector risk management and statutory responsibilities. […]
Rep. Mark Green, R-Tenn., the newly installed chairman of the House Homeland Security Committee, said he wants to help the Cybersecurity and Infrastructure Security Agency (CISA) strengthen its role as an “information enabler,” but at the same time said he is wary of the agency taking more of a “regulatory approach” to its mission. […]
The Government Accountability Office offered some big-picture marching orders in a new report this week for three Federal agencies with major cybersecurity portfolios to improve how the agencies are undertaking their security missions. […]
Successfully implementing a zero trust architecture can oftentimes be a challenge for organizations, especially when there is a lack of buy-in at the executive level. To help clear that kind of hurdle, Federal officials say the secret sauce is developing a zero trust business case. […]
The Cybersecurity and Infrastructure Security Agency’s (CISA) Joint Cyber Defense Collaborative (JCDC) said this week it will focus on three main priority areas in 2023: systemic risk, collective cyber response, and high-risk communities, according to its 2023 Planning Agenda released on Jan 26. […]
A top official at the Cybersecurity and Infrastructure Security Agency (CISA) said that we can expect to see “much more” guidance from agency cyber gurus in the coming months on Cybersecurity Supply Chain Risk Management (C-SCRM). […]
Daniel Bardenstein, the Cybersecurity and Infrastructure Security Agency’s (CISA) Chief of Technology Strategy and Delivery, said on Jan. 18 he will be stepping down from his post at the cyber defense agency. […]
Rep. Ritchie Torres, D-N.Y., has asked the Cybersecurity and Infrastructure Security Agency (CISA) and the Department of Transportation (DOT) to conduct a joint review of the cyber vulnerabilities of all systems supporting national air travel, according to a Jan. 12 letter Rep. Torres sent to CISA Director Jen Easterly. […]
The Cybersecurity and Infrastructure Security Agency (CISA) released its 2022 Year in Review report this week, highlighting the agency’s increased collaboration with industry partners. […]
As open source tools and software are becoming a more integral part of the government’s technology base, a host of agencies are at work formulating strategies to take best advantage of that trend, according to Allan Friedman, senior advisor and strategist at the Cybersecurity and Infrastructure Security Agency (CISA) […]