Cybersecurity
Air Force Only Service to Develop Cybersecurity Requirements for Weapon Systems Contracts, GAO Says
The audit found the Defense Department has improved weapon systems cybersecurity in recent years, but detailed requirements must make it into contracts.
Cybersecurity
Hafnium hack poses new long-term threat for already overtaxed cyber workers
Federal agencies still reeling from the effects of a massive hack involving SolarWinds may face a new challenge of evicting any adversaries that breached their networks through recently discovered vulnerabilities in Microsoft's Exchange software.
Modernization
Justice Department Warns of Fake Unemployment Benefit Websites
It’s one more issue for jobless Americans and state workforce agencies to be concerned about.
Cybersecurity
House Armed Services Chair Calls for Focus on Information Systems Over Arbitrary Metrics
Rep. Adam Smith, D-Wash., suggested a 500-ship Navy is inadequate if adversaries are able to disrupt command and control systems.
Cybersecurity
Vague contract language hampers cybersecurity for weapons systems, GAO says
The Government Accountability Office found that missing or vague cybersecurity requirements in acquisitions contracts for weapons systems often led to DOD getting a system that didn't meet its security needs.
Ideas
Debunking Three Myths about Hardware Security
The federal government should consider hardware-enabled security approaches.
Digital Government
9 Government Tech Trends That Mattered in 2020
The federal government turned to technology during an unprecedented 2020 marked by the COVID-19 pandemic.
Cybersecurity
Why the network compass is obsolete
Old labels for network traffic are out of date with government users connecting from devices outside traditional perimeters, but TIC 3.0 offers a new map.
Cybersecurity
White House Is Developing a Plan to Secure Industrial Control Systems
An upcoming executive order in response to the hacking campaign that involved SolarWinds will include standards to improve software transparency.
Cybersecurity
DHS Wants Help Restructuring Pay and Bonuses for Cybersecurity Pros
The agency is looking for a vendor to help lay out a plan to recruit and retain top talent needed to meet its cybersecurity missions.
Ideas
It’s Time for a Cybersecurity Quid Pro Quo
Require companies to disclose breaches to the government in exchange for legal liability limitations.
Cybersecurity
Under new law, NIST looks to map out vulnerability disclosure policies for government
Lawmakers in December tasked NIST with to developing processes that would ensure software vulnerability reports flow to the appropriate government offices and the issues are promptly fixed.
Cybersecurity
NIST Planning Workshop to Comply with Law on Federal IoT Procurement
Comments on draft documents required under the IoT Cybersecurity Improvement Act raise concerns of both fragmentation and a lack of flexibility.
Cybersecurity
Biden’s Pick For Defense Policy Chief Outlines Cyber Deterrence Position
In a contentious nomination hearing, Colin Kahl called for a whole-of-government approach to technology.
Cybersecurity
CISA Orders Immediate Action on Vulnerabilities in Microsoft Exchange Servers
All agencies must report their status to CISA by noon on March 5.
Cybersecurity
CISA Official Calls for Update of Identity Management Guidance in Wake of SolarWinds Compromise
"Identity is everything now," a technical strategist told NIST advisers in a briefing on the hacking campaign.
Modernization
CIOs’ Wishlist for New Congress and Administration IT Leadership
Three department IT leaders share their top asks from the new Congress and yet-to-be-appointed federal CIO.
Cybersecurity
Lawmaker SolarWinds Concerns Spill Over in Week of Defense Hearings
In multiple hearings, lawmakers sought solutions to pressing technology-based security issues.
Cybersecurity
CISA orders agencies to disconnect Microsoft Exchange on-prem servers
The government's leading cybersecurity agency is ordering all federal civilian agencies to provide a status report on its usage of Microsoft Exchange products by noon on Friday.
Ideas