cybersecurity

Successfully implementing a zero trust architecture can oftentimes be a challenge for organizations, especially when there is a lack of buy-in at the executive level. To help clear that kind of hurdle, Federal officials say the secret sauce is developing a zero trust business case.

[…]

CISA

The Cybersecurity and Infrastructure Security Agency’s (CISA) Joint Cyber Defense Collaborative (JCDC) said this week it will focus on three main priority areas in 2023: systemic risk, collective cyber response, and high-risk communities, according to its 2023 Planning Agenda released on Jan 26.

[…]

speed

The National Security Agency (NSA) on Jan. 18 published guidance to help the Department of Defense (DoD) and other system administrators identify and mitigate security issues associated with the transition to Internet Protocol version 6 (IPv6).

[…]

NIST

The National Institute of Standards and Technology (NIST) has put together a concept paper with proposed revisions to its Cybersecurity Framework (CSF) and is looking for input on the changes before it crafts a draft of CSF 2.0.

[…]

Federal Communications Commission (FCC) Chairwoman Jessica Rosenworcel warned in a Jan. 17 speech that the deployment of fifth-generation (5G) wireless communications networks involves big security and privacy challenges.

[…]

The U.S. Department of Health & Human Services (HHS) plans to release updated cybersecurity guidance for the healthcare industry along with an agency-wide data strategy in the upcoming weeks, according to Karl Mathias, chief information officer (CIO) at HHS.

[…]

CISA

The National Archives and Records Administration (NARA) today published an update to the government’s records retention rules, which provides Federal agencies with new instructions on how long to hang on to cybersecurity logs.

[…]

Sen. Jacky Rosen, D-NV, U.S. Senate

Three Senate Democrats outlined their tech priorities for this year at the CES 2023 technology conference in Las Vegas on Jan. 6, with cybersecurity and investments in tech advancements topping that list.

[…]

USPTO

The U.S. Patent and Trademark Office (USPTO) is looking for a contractor to perform red team penetration testing on USPTO systems as the organization looks to continue improving its cybersecurity posture and protect its data, according to a Jan. 4 request for information (RFI).

[…]

CISA

The nation’s path to sustainable cybersecurity improvement lies in improving technology security by design, and achieving better communication between industry and government, said Jen Easterly, director of the Cybersecurity and Infrastructure Security Agency (CISA), during an address today at the CES 2023 technology conference in Las Vegas.

[…]

VA, Veterans Affairs

President Biden signed into law on Dec. 27 the Strengthening VA Cybersecurity Act of 2022, which requires the Department of Veterans Affairs (VA) to obtain an independent cybersecurity assessment of its most critical information systems, as well as its cyber posture as a whole.

[…]

President Biden on Dec. 27, 2022, signed into law the Small Business Cyber Training Act, which requires the Small Business Administration (SBA) to boost its ability to provide cyber planning training, and be more proactive in protecting data and requiring greater transparency of threats and breaches that occur.

[…]

IT

Technology suppliers to the Federal government are telling MeriTalk that they expect to see Federal agencies place increasing emphasis on IT modernization efforts in 2023, along with continuing efforts to boost cybersecurity protections that modernized systems can help to achieve.

[…]

From ensuring the nation’s voting infrastructure was secure in preparation for election season to developing strategies and goals to support critical infrastructure owners and operators, boosting the nation’s cyber posture was among many Federal agencies’ top priorities for 2022. 

[…]

Cybersecurity

The new year in cybersecurity is likely to feature at least one old problem – shortages of skilled cyber professionals – but also progress in areas like zero trust security, cloud adoption, and continued adoption of enterprise IT approaches.

[…]

CISA

Cloud security provider Zscaler said this week that it has joined the Joint Cyber Defense Collaborative (JCDC), which was created last year by the Cybersecurity and Infrastructure Security Agency (CISA) to unify the efforts of cyber defenders from organizations around the world.

[…]

DHS

The Department of Homeland Security (DHS) has several initiatives underway to help U.S. critical infrastructure providers reduce risks – with partnerships between the public and private sectors positioned as the key to ensuring success of those initiatives, an agency official said this week.

[…]

President Biden today signed into law legislation to set the Federal government on the path to defending against quantum computing-enabled data breaches that will become more of a threat as quantum tech advances in the coming years.

[…]

CISA

One of the Cybersecurity and Infrastructure Security Agency’s (CISA) mainstay cybersecurity protection programs got an extended lease on life, along with $91 million of funding, in the fiscal year (FY) 2023 omnibus appropriations bill released by the House and Senate Appropriations committees on Dec. 20.

[…]

CISA

The Cybersecurity and Infrastructure Security Agency (CISA) is in line to receive a 12 percent funding increase under Fiscal Year 2023 appropriations legislation unveiled today – a spending hike that Capitol Hill leaders said will help the agency boost its ability to prevent cyberattacks and secure critical infrastructure.

[…]

FITARA

The Office of Management and Budget (OMB) has released a new “progress report” on the state of cybersecurity across Federal agencies, just in time for the 15th edition of the FITARA Scorecard issued today by the House Oversight and Reform Committee.

[…]

Cybersecurity

To help fend off ever-increasing cyberattacks, Splunk is helping organizations to build a foundation of cyber resilience so they can have visibility into cyber threats, accelerate operations, and meet their mission.

[…]

Cybersecurity flag

The Fiscal Year (FY) 2023 National Defense Authorization Act (NDAA) bill released by the House Rules Committee late Tuesday evening features numerous provisions designed to bolster cyber capabilities and operations not only at the Defense Department (DoD), but at other Federal agencies as well.

[…]

CISA

Cybersecurity and Infrastructure Security Agency (CISA) Director Jen Easterly wants the agency’s Cybersecurity Advisory Committee (CSAC) to stand up a new subcommittee focused on corporate cyber responsibility as part of a move to build a cyber “civil defense” capacity.

[…]

Federal agencies have until September 30, 2023, to report at least 80 percent of their IT systems through the Cybersecurity and Infrastructure Security Agency’s (CISA) Continuous Diagnostics and Mitigation (CDM) program, according to an OMB Federal Information Security Modernization Act (FISMA) guidance issued on Dec. 2.

[…]

1 2 3 98

Categories