Cybersecurity
OPM's Ahuja Gets an Earful From Agencies Over Enhanced Pay for Cyber Talent
The Director of the Office of Personnel Management is navigating the intense competition among federal agencies for in-demand cybersecurity workers.
Cybersecurity
Public Entities in Nearly Every State Use Federally-Banned Foreign Tech, Report Says
A new report from Georgetown University’s Center for Security and Emerging Technology found that at least 1,681 state and local governments purchased equipment from five Chinese companies that were banned by the federal government between 2015 and 2021.
Cybersecurity
FTC's Data Security Complaint Against Drizly Sets New Leadership Responsibility
The consequences of Drizly’s lax security measures could echo past the beverage delivery company.
Cybersecurity
CISA Seeks Feedback on Baseline Measures to Secure Cloud Configuration
Initial baselines address Microsoft services, and baselines for configuring rival services from Google are up next.
Cybersecurity
NDAA Amendment Would Establish Veteran-Focused Cyber Training Program
A provision included in House and Senate legislation authorizing Defense Department spending for fiscal year 2023 would allow veterans and military spouses to receive cyber training “at no cost.”
Cybersecurity
TSA Opens Registration for Public Meeting on Cybersecurity Regulations
The agency’s advisory committee typically meets behind closed doors, but they are required to hold at least one public meeting per year.
Cybersecurity
Global Cyber Workforce Needs 3.4 Million Professionals to Fill Gaps, Study Finds
The survey also found that government cyber workers reported the least confidence in their ability to mitigate security threats over the next couple years “based on their current staff and tools.”
Cybersecurity
CISA to Focus on Water, Education and Health Sectors Over the Next Year
The agency contributed to the release of security requirements for the transportation sector this week and is expected to issue cross-sector performance goals for critical infrastructure companies’ voluntary adoption next week.
Cybersecurity
White House looks to advance cyber safety labeling effort with 'initial scope' next spring
A senior administration official said the White House is beginning with a label that will focus on some of the most at-risk technologies – and that the National Institute of Standards and Technology will play a major role in getting it done.
Cybersecurity
Can Service Meshes Help Bring Legacy Government Applications into Zero Trust?
The Biden administration’s imperative to move to zero trust could prove challenging for agencies with still-functional legacy systems.
Cybersecurity
NSA Advocates Active Defense, as Industry Lawyer Advises Against Incident Reports
Speakers at a new conference hosted by cybersecurity firm Mandiant highlighted the challenge the government faces in motivating companies to report attacks on critical infrastructure.
Cybersecurity
Cyber Talent Still in High Demand
In the last 12 months, more than 769,000 cyber job postings went up in the United States.
Cybersecurity
How the FBI stumbled in the war on cybercrime
Although cyberattacks were becoming more sophisticated, FBI officials told counterparts at DHS and elsewhere in the federal government that ransomware wasn’t a priority.
Cybersecurity
Labor Group Highlights Conflict of Interest Issues in Cyber Workforce Legislation
The federal workers union wrote to senators opposing an amendment to the NDAA that would establish a civilian reserve at CISA.
Cybersecurity
Malign Influence Operations Increasing Ahead of Midterms, Report Finds
A report from cybersecurity firm Recorded Future found that nation-state adversaries and domestic extremists are engaged in efforts to influence the outcome of the November elections.
Cybersecurity
Commercial Availability, Consequences Best Approach for Post-Quantum Transition
Ann Cox, the lead at the Department of Homeland Security’s research office, emphasized community engagement and technological needs for a successful quantum-resilient future.
Cybersecurity
White House preps security controls for commercial software acquisition
The administration is attempting to leverage the procurement powers of the federal government to bolster software cybersecurity for the first time.
Cybersecurity
4 Critical Infrastructure Sectors to Get New Cyber Rules, Per White House Official
The deputy national security advisor for cyber and emerging tech said it should be up to sector-specific agencies to decide who should implement appropriate cybersecurity defenses.
Cybersecurity
Lessons from China’s Cyberattack Strategy Can Help CISOs Better Manage Threats, Report Says
A new report from Booz Allen Hamilton analyzed more than a dozen Chinese-sponsored cyberattacks over the past decade.
Cybersecurity