As dozens of Federal agencies continue to petition the TMF Board for some of the $1 billion of funding that the Technology Modernization Fund (TMF) received from Congress earlier this year, one of the Federal government’s best-positioned officials to offer advice on the process stopped by MeriTalk’s TMF Forward virtual event on Dec. 16 with a bag of tips on how agencies can hone their proposals and clinch funding deals. […]

The National Security Agency (NSA) and the Cybersecurity and Infrastructure Security Agency (CISA) published the fourth installment on securing the integrity of 5G cloud infrastructures. […]

The Cybersecurity and Infrastructure Security Agency (CISA) said Dec. 14 that there has been no confirmed compromise of any Federal agencies as a result of the Log4j vulnerability. But CISA reiterated it has added the vulnerability to its catalog of known vulnerabilities over the weekend, giving agencies two weeks to remediate and mitigate any potential harm. […]

The Cybersecurity and Infrastructure Security Agency (CISA) released a statement on Dec. 11 with guidance for organizations to protect themselves against the “log4j” critical vulnerability that surfaced over the weekend. […]

While a good bit of the focus on the conferenced version of the fiscal year (FY) 2022 National Defense Authorization Act has centered around the lack of incident reporting and other legislative items that were cut from the bill, the defense spending bill that passed the House of Representatives last week continues to retain a variety of important cybersecurity and tech-related provisions. […]

The Cybersecurity and Infrastructure Security Agency (CISA) held its inaugural Cybersecurity Advisory Committee meeting Dec. 10, focusing heavily on how CISA and the committee can increase the Federal and national cybersecurity workforce. […]

The Cybersecurity and Infrastructure Security Agency (CISA) held its first Cybersecurity Advisory Committee meeting today, in which agency officials laid out their expectations for the committee and called for actionable cyber recommendations from committee members that CISA can implement. […]

The Cybersecurity and Infrastructure Security Agency (CISA) and the National Security Agency (NSA) released the third installment of the Security Guidance for 5G Cloud Infrastructures four-part series, which is intended to protect the confidentiality, integrity, and availability of data within a 5G core cloud infrastructure. […]

Identity management is one of the main pillars of the Cybersecurity and Infrastructure Security Agency’s (CISA) Zero Trust Maturity Model, but CISA’s program lead for the Trusted Internet Connection (TIC) program office Sean Connelly said that while identity is an important pillar, it should not be the only pillar agencies focus on. […]

The Cybersecurity and Infrastructure Security Agency (CISA) announced the members of its new Cybersecurity Advisory Committee, which will be tasked with advising and providing recommendations to the CISA director on policies, programs, planning, and training to enhance the nation’s cyber defense. […]

As the Senate returns to work on Nov. 29 with the completion of debate on the Fiscal Year (FY) 2022 National Defense Authorization Act (NDAA) at the top of its agenda, lawmakers will be looking to tack on a host of cybersecurity-related amendments to the defense spending bill. […]

The Cybersecurity and Infrastructure Security Agency (CISA) has issued a request for information (RFI) focused on email security capabilities that will protect Federal networks and the Federal Civilian Executive Branch (FCEB) .gov domain enterprise from threats and strengthen cyber defenses. […]

The Department of Homeland Security’s (DHS) Cybersecurity and Infrastructure Security Agency (CISA) needs to assess the effectiveness of its programs and services to support the communications sector – which is critical for U.S. national security. […]

As the Federal government continues to focus on boosting the nation’s cybersecurity hygiene, Cybersecurity and Infrastructure Security Agency (CISA) Director Jen Easterly said Nov. 18 that visibility and modernization are the keys to improving the nation’s cybersecurity posture. […]

The Cybersecurity and Infrastructure Security Agency (CISA) and the FBI issued a cybersecurity advisory today, warning public and private sector organizations to stay vigilant for ransomware attacks and other cyberattacks leading up to and during the holiday season. […]

The Cybersecurity and Infrastructure Security Agency (CISA) has launched its Infrastructure Dependency Primer (IDP) learning tool, which aims to help state, local, tribal, and territorial planners and decisionmakers better understand how infrastructure dependencies can impact their communities and how to increase resilience. […]

The Cybersecurity and Infrastructure Security Agency (CISA) will be rolling out a new protected Domain Name System (DNS) technology in 2022, CISA’s Trusted Internet Connections (TIC) program lead Sean Connelly said on Nov. 18. […]

The House of Representatives passed the Build Back Better (BBB) Act this morning, sending the more than $1.75 trillion reconciliation package to the Senate. The bill includes billions for supply chain resiliency, as well as additional cybersecurity and IT modernization funding. […]

The Cybersecurity and Infrastructure Security Agency (CISA) and the National Security Agency (NSA) said today they published new guidance to mitigate cyber threats within 5G cloud infrastructure. […]

The Department of Homeland Security’s (DHS) Cybersecurity and Infrastructure Security Agency (CISA) released new Cybersecurity Incident and Vulnerability Response Playbooks today, completing a vital assignment from President Biden’s Cybersecurity executive order (EO). […]

In the wake of a Government Accountability Office (GAO) report encouraging the Departments of Education and Homeland Security (DHS) to update K-12 cybersecurity guidance, several Democrat senators have written to both agencies urging them to heed GAO’s recommendations, and establish critical infrastructure council structures to advance the issue. […]

Sponsors of two major pieces of legislation that would make formative changes to the way that private sector companies report cyberattacks to the government – and how Federal government agencies conduct their own cyber defenses – are hitching their hopes for passage to annual defense spending legislation that traditionally gets strong bipartisan support from lawmakers. […]

Cybersecurity and Infrastructure Security Agency (CISA) Director Jen Easterly said November 10 that the agency’s Binding Operational Directive (BOD) issued earlier this month to Federal agencies to remediate against a list of 300 known exploited cyber vulnerabilities appears to be getting a good reception from government and industry as an effective roadmap on how to prioritize action against prevalent cyber threats. […]

Palo Alto Networks recently issued a report detailing a targeted attack campaign that leveraged leased infrastructure in the U.S. to scan hundreds of vulnerable organizations, which compromised at least nine global entities in the technology, defense, healthcare, energy, and education sectors. […]

Congressional backers of another big shot of funding for the Technology Modernization Fund (TMF) are not ready to take no for an answer. After a proposed $1 billion of additional funding for TMF was stripped late last month from House Democrats’ committee-level proposals for the Build Back Better Act, a new amendment to the legislation offered by Rep. John Yarmuth, D-Ky., would add $250 million of TMF funding as part of a larger $500 million proposal to advance IT modernization programs. […]

After more than two months of angling and dealmaking, the House of Representatives voted to approve the $1 trillion Infrastructure Investment and Jobs Act – also known as the Bipartisan Infrastructure Framework – on November 5, sending the bill along with its $2 billion in cyber funding and $65 billion in broadband appropriations to President Biden’s desk for final approval. […]

Richard Grabowski, acting program manager for the Cybersecurity and Infrastructure Security Agency’s (CISA) Continuous Diagnostics and Mitigation (CDM) program, explained at a November 4 event organized by FCW that new memoranda of understanding (MOA) that the program has been signing with Federal agencies are a key component to enabling better cyber threat hunting by CISA across agency networks. […]

Federal agencies as a group are “close” to completing work to put in place the first two of the Continuous Diagnostics and Mitigation (CDM) program’s four key capabilities, said Betsy Kulik, senior advisor for the Cybersecurity and Infrastructure Security Agency’s (CISA) CDM program, at a November 4 online event organized by FCW. […]

The cybersecurity threats that have prompted wide-scale action to improve security across the Federal government are posing equal dangers to state and local governments, and officials said at FCW’s CDM Summit virtual event on November 4 that the same solutions being put into place by the Feds also are scalable and adaptable by state and local governments. […]