Digital Government
Newly Uncovered Emails Intensify Republican Senator's Unease About DOD’s Cloud Contracts
A senior senator continued a back-and-forth with auditors over the Defense Department's now-canceled JEDI contract.
Cybersecurity
NIST Updates Cybersecurity Engineering Guidelines
Amid constant cybersecurity threats, NIST added more insight for engineers and programmers on how to mitigate system vulnerabilities.
Cybersecurity
How the Log4j Vulnerability is Forcing Change in Federal Cybersecurity Policy
Officials say agencies have demonstrated more dedication than ever in addressing a bug with astronomical reach, but organizations are at the mercy of product vendors to issue the patches they need to implement.
Cybersecurity
NGA looks to tech to support unclassified workforce
The National Geospatial-Intelligence Agency is looking to the future with plans to accommodate uncleared employees and to be prepared for "a changing world environment that we don't anticipate," said Mark Andress, the agency's CIO.
Cybersecurity
GSA Seeks Comments on Transfer of .Gov Domain to Cybersecurity Agency
The government’s site for managing government websites—dotgov.gov— may temporarily go down for maintenance as officials make the switch.
Cybersecurity
How Cybercriminals Turn Paper Checks Stolen from Mailboxes into Bitcoin
Mailboxes are increasingly becoming the scene of a crime.
Cybersecurity
One Year After Jan. 6 Attack, Push For Quick Reaction Force Is Dead On Capitol Hill
Experts also warn changes at DOD won’t speed up how quickly Guardsmen could respond to future incidents.
Cybersecurity
Federal agencies highlight security improvements a year after Capitol attack
The Homeland Security Department said officials do not “have information indicating any specific or credible threats related to the anniversary.”
Cybersecurity
New CMMC Training to Align with Certification Changes
Look for trainers working on the Cybersecurity Maturity Model Certification program to realign their efforts to support recent changes to the certification process in 2022.
Cybersecurity
DOD looks to expand its data partnerships with allies
The Defense Department’s chief data officer, David Spirk, talked about the growing community of data leaders among allies and how the partnerships can pay off.
Cybersecurity
FTC warns of legal risks of failing on Log4j mitigation
The Federal Trade Commission issued a warning this week urging companies to take "reasonable steps" to mitigate known software vulnerabilities or face potential legal consequences, recalling the $700 million settlement Equifax paid for a major breach in 2017.
Ideas
AI-Powered Automation Can Be Both a Part of the Problem and Part of the Solution
There are real security concerns that should be addressed ahead of further government adoption of a truly automated future.
Cybersecurity
Corrected: FedRAMP Bill Includes Transparency Provisions for New Advisory Council
The legislation would create a public-private advisory council that would be subject to most of the provisions of the Federal Advisory Committee Act.
Cybersecurity
Closing the CMMC training gaps
Look for trainers working on the Cybersecurity Maturity Model Certification program to realign their efforts to support recent changes to the certification process in 2022.
Cybersecurity
Feds Step Up Cybersecurity Support for State Governments
Forty-two advisers have been appointed or are in the process, with eight states still needing federal-level coordinators.
Cybersecurity
Watchdog Security Reviews Not Guaranteed in FedRAMP Revamp
Legislation recently clearing a key Senate committee stops short of requiring the Government Accountability Office to review vendors’ encryption practices and supply chains.
Ideas
The Top Challenges to Zero Trust Adoption Facing Government Agencies
Officials must overcome legacy tech and dated requirements.
Cybersecurity
US Still Lacks Federal Cyber Strategy After Decades of Attempts
The United Kingdom, meanwhile, recently updated its approach, crediting strong regulatory measures with significant cyber-risk reduction over recent years.
Cybersecurity
The legacy of the Cyberspace Solarium Commission
The Cyberspace Solarium Commission is officially sunsetting after more than two years, dozens of recommendations and a slew of legislative changes. But since there’s more to be done, the panel is rebooting its efforts as a non-profit.
Ideas