As the Federal government continues to execute on fundamental shifts in network security strategies like the move to zero trust architectures, agency tech leaders are emphasizing the need to push back against the status quo of established technology thinking.
Federal agency officials said that having the rights tool, and a workforce culture tuned into security, are key elements in making gains on cybersecurity-supply chain risk management (C-SCRM).
After gunfire damaged two electrical substations in Moore County, N.C., leaving 45,000 people without power in early December, a team of Federal energy sector regulators has taken action to conduct a review of electric grid security protocols.
Illumio, a provider of zero trust segmentation (ZTS) technologies, said today that its Illumio Government Cloud offering has received FedRAMP (Federal Risk and Authorization Management Program) In Process designation at a Moderate Impact Level, under the sponsorship of the Department of Health and Human Services (HHS) Office of Inspector General.
The Technology Modernization Fund (TMF) said today it will make $14.6 million of new funding awards to build and improve digital services at the U.S. Agency for International Development (USAID) and the U.S. Railroad Retirement Board (RRB).
Private sector tech firms that help the Federal government improve tech and security capabilities are viewing last week’s FITARA Scorecard as a further call to action on the cybersecurity and IT modernization fronts.
Cybersecurity experts at the U.S. Government Accountability Office (GAO) today praised Federal agencies for their progress and cost savings as reflected in the latest FITARA Scorecard issued by the House Oversight and Reform Committee today, but said agencies need to do better in speeding their transition to Enterprise Infrastructure Solutions (EIS) communications contracts, and do more to empower their chief information officers (CIOs).
The Office of Management and Budget (OMB) has released a new “progress report” on the state of cybersecurity across Federal agencies, just in time for the 15th edition of the FITARA Scorecard issued today by the House Oversight and Reform Committee.
Both the chairman and the ranking member of the House Government Operations Subcommittee complained today – to varying degrees – about a lack of new and detailed information on Federal agency cybersecurity performance data to inform the 15th version of the biannual FITARA Scorecard released today by the House Oversight and Reform Committee.
IT-related gradings for the largest Federal government agencies moved moderately higher on the 15th edition of the FITARA Scorecard issued today by the House Oversight and Reform Committee.
Cybersecurity issues are likely to be front and center at the House Government Operations Subcommittee’s Dec. 15 hearing at which the panel will unveil the 15th edition of the House Oversight and Reform Committee’s FITARA (Federal Information Technology Acquisition Reform Act) Scorecard.
Google released a new research report on Dec. 8 outlining how organizations can better defend themselves against cyberattacks that target their software supply chains. The report follows up on supply chain security concerns brought to light by exploits such as the SolarWinds software supply chain attack, and efforts to guard against Log4j vulnerabilities. “We believe […]
The House Government Operations Subcommittee will hold a hearing on Dec. 15 at 9:00 a.m. to discuss results from the 15th edition of the FITARA Scorecard expected to be released by the House Oversight and Reform Committee on the same day.
Top Federal officials from largely public-facing agencies explained at a Dec. 1 GovExec event how zero trust security, if adopted correctly, will inherently end up improving customer experience (CX).
Ensuring a strong cyber posture against current and anticipated threats across the Department of Defense (DoD) has become an increasingly important priority as evidenced by the Pentagon’s release of the DoD Zero Trust Framework Strategy and Roadmap last month, an agency official said.
Cloud security provider Zscaler said today that its Zscaler Private Access service – a cloud-delivered, zero trust network access (ZTNA) service that provides secure access to all private applications, without the need for a remote access VPN – has achieved FedRAMP Moderate Authorization from the General Services Administration’s Federal Risk and Authorization Management Program.
The Department of Defense (DoD) today released its long-anticipated zero trust strategy and roadmap outlining how the agency plans to fully implement a department-wide zero trust cybersecurity framework by fiscal year (FY) 2027. “What is significant about the strategy is that the strategy makes zero trust tangible and achievable while recognizing a dynamic and frankly, […]
The Technology Modernization Fund (TMF) is looking to invest in Federal agency IT modernization projects that can yield incremental and measurable progress over the shorter term, as well as over the life of the project, a fund official said last week.
Federal government and private sector officials said at a Nov. 8 ATARC event that government agencies have made notable progress in implementing the Biden administration’s May 2021 cybersecurity executive order, but that the government has still has a long way to go to reach the order’s full potential.
The Biden administration plans to launch a process to review and revise U.S. critical infrastructure protection policy, including providing guidance to agencies on designating certain critical infrastructure (CI) as “systemically important.”
The National Institute of Standards and Technology (NIST) plans to create a cybersecurity practice guide for the water and wastewater utilities sector, according to an announcement published last week.
The Defense Information Systems Agency (DISA) is on track to complete work on its Thunderdome Prototype zero trust security project by January 2023, an agency official confirmed on Nov. 7 at a DISA press conference.
Federal agencies can leverage human-centered design principles to solve a variety of IT issues, government chief information officers (CIOs) shared during the GDIT Emerge Health 2022 conference on Nov. 3.
Federal agency leaders agree that zero trust security is the “bread and butter” of their agencies’ cybersecurity operations in order to best secure personal health information, where the stakes are high given the special sensitivity of that data.
Matt House, who was named program manager of the Cybersecurity and Infrastructure Security Agency’s (CISA) Continuous Diagnostics and Mitigation (CDM) program last week, sketched out some principles in the program’s path forward today at FCW’s CDM summit event.
As agencies work to implement the Cybersecurity and Infrastructure Security Agency’s (CISA) Continuous Diagnostics and Mitigation (CDM) program capabilities, agency officials today said that operational technology (OT) has proved to be “one of the biggest challenges” for the program – and represents an unknown territory for both CISA and partner agencies.