The National Institute of Standards and Technology (NIST) released a bulletin note from the Information Technology Laboratory (ITL) on cybersecurity risks increasing with remotely accessible telework networks. […]
Rep. Mike Gallagher, R-Wis., a member of the Cyberspace Solarium Commission that is set to release recommendations March 11 on how to better defend the U.S. against cyber threats, said today the commission hopes to spark quick action by Congress on at least some of those recommendations. […]
Federal agencies are significantly better than private sector organizations at enforcing domain-based message authentication, reporting, and conformance (DMARC) standards to combat email domain spoofing, according to a new report from anti-phishing company Valimail. […]
The National Institute of Standards and Technology (NIST) is seeking comments through May 4 on a draft revision of NISTIR 8183, the Cybersecurity Framework Manufacturing Profile, that includes subcategory enhancements established in the agency’s Framework for Improving Critical Infrastructure Cybersecurity, Version 1.1. […]
Jim Sullivan, defense intelligence officer (DIO) for cyber at the Defense Intelligence Agency (DIA), emphasized the value of offensive operations in cyberspace to deter nation-state attackers during a panel discussion this week at the RSA security conference in San Francisco. […]
Three members of the Cyberspace Solarium Commission (CSC) on Feb. 25 hinted at several themes of the group’s upcoming recommendations for U.S. cybersecurity doctrine and policy that is due for public release on March 11. Central to the report’s conclusions will be a rethinking of cyber deterrence strategies, and greater coordination between the Federal government’s several agencies that focus on cyber defense, they indicated. […]
The National Institute for Standards and Technology (NIST) released a report outlining best practices in building the cybersecurity workforce through regional partnerships. […]
Members of the Senate Armed Services Committee investigated the cybersecurity of contractors working with the United States Transportation Command during a hearing Tuesday. […]
Since 2014, the beginning of CIO Joseph Klimavicz’s tenure, the Department of Justice (DoJ) has achieved $600 million in IT cost avoidance, reduced cyber risk by 70 percent, and streamlined its 23 email systems into one cloud-based solution. […]
In a recent report about 2020 Democratic presidential candidates’ cybersecurity posture, each of the campaigns scored a “B” letter grade or better, and showed increased focus and investment in good cyber hygiene. […]
The U.S. Navy Cyber Warfare Development Group (NCWDG) announced the opening of the Cyber Foundry at Fort Meade, Md., on Feb. 18. […]
A new Government Accountability Office (GAO) report found that the Office of Congressional Workplace Rights (OCWR) failed to incorporate cybersecurity management practices into the planning of its Secure Online Claims Reporting and Tracking E-filing System (SOCRATES) project. […]
The Departments of Energy (DOE), Homeland Security (DHS), and Defense (DoD) announced Feb. 3 a collaborative initiative to prepare for and respond to cyberattacks on critical energy infrastructure, in part by putting energy infrastructure threat response plans to the test. […]
In a follow-up to the Department of Defense’s (DoD) Fiscal Year 2019 audit, the Office of the Inspector General (IG) explained in a Jan. 28 report how critical financial management improvements could boost cybersecurity at the agency. […]
The General Services Administration (GSA) Office of Inspector General (OIG) reported three weaknesses in GSA’s Federal Information Security Management Act (FISMA) compliance for Fiscal Year 2019 in a report dated Dec. 5, 2019, but released on Jan. 30. […]
The Social Security Administration (SSA) announced its intent to acquire a role-based cybersecurity training platform for employees in a Jan. 23 solicitation. […]
The Department of Defense (DoD) is seeking out commercial solutions to its inventory management system in order to improve its patch management methodology, according to a Jan. 15 solicitation. […]
Proactive work by Federal agencies on cybersecurity – with a particular focus on workforce, innovation, and data management – is a key factor in agency success in protecting patient data from security threats, Federal officials said on Jan. 16. […]
Industry leaders shared their predictions for 2020 and beyond with MeriTalk, indicating the path to progress will often track uphill, and around plenty of curves. […]
Sens. Gary Peters, D-Mich., and Rick Scott, R-Fla., have introduced a bill in the Senate that would establish a K-12 cybersecurity education initiative. […]
The Fiscal Year 2019 audit of the Treasury Department found enough control issues with the department’s government-wide cash management and Federal debt IT systems to warrant a management report on the deficiencies from Treasury’s inspector general and auditor KPMG. […]
For agencies pursuing new ways to share and manage data, Government Accountability Office (GAO) Director of IT and Cybersecurity Nick Marinos recommends focusing on the agency’s mission and incorporating security early on in the process. […]
New research shows that email is still a weak link in U.S. election infrastructure, with only five percent of the nation’s largest counties protecting election officials from impersonation attempts. […]
The Department of Justice (DoJ) updated its Policy on the Use of Unmanned Aircraft Systems (UAS), placing an emphasis on cybersecurity and mitigating supply chain risks that may come from drones. […]
The General Service Administration’s (GSA’s) Office of the Inspector General (OIG) released its semiannual report to Congress on November 27, recommending $79 million in cost savings for the time period. […]
The Department of Energy’s (DoE) Office of the Inspector General (OIG) reported numerous cybersecurity weaknesses at DoE and issued 54 recommendations to the agency throughout Fiscal Year 2019, according to a report released on Nov. 19. […]
An Office of the Inspector General (OIG) report cites prosecuting cybercrime in the age of encryption, maintaining election security, and protecting its own IT systems as areas of top management and performance challenges facing the Department of Justice (DOJ). […]
An annual report issued by the Department of Homeland Security’s (DHS) Office of Inspector General (OIG) flags leadership stability and cybersecurity issues among the “most serious management and performance challenges” facing the agency currently. […]
To improve the future of cybersecurity posture for the United States, experts agree that improving on basic security measures and shifting culture to compete with industry in the workforce are essential elements. […]
An audit of the finances of the Small Business Administration highlighted the need for improved cybersecurity and internal controls over IT systems. […]