Cybersecurity
The Government's Software Transparency Journey Moves from Plan to Practice
Allan Friedman, the leader of a transparency initiative at the Commerce Department, is now at the Cybersecurity and Infrastructure Security Agency to realize the ultimate vision for a software bill of materials.
Cybersecurity
CISA Urges Patching Atlassian Software Before Holiday Weekend
A vulnerability in collaboration software is undergoing “mass exploitation,” according to U.S. Cyber Command.
Modernization
House Reconciliation Package Includes $3 Billion for Federal IT
The Technology Modernization Fund would get another $1 billion.
Ideas
The Federal Government is Using 20th-Century Responses to a 21st-Century Problem
Policymakers have been working on implementing continuous monitoring of its human assets with access to top secret information for several years, and the government should do the same for its digital assets.
Emerging Tech
Air Force’s First Software Chief Steps Down
Leader of a Pentagon-wide DevSecOps initiative, Nicolas Chaillan cited lack of support from senior leadership as one reason for his departure.
Ideas
5 Steps to Protecting Federal Data Repositories in the Cloud
From ransomware to exfiltration, cybersecurity attacks are targeting sensitive government data. Here’s a reliable approach to protecting mission-critical information.
Cybersecurity
House panel passes 2022 NDAA with eye on cyber workforce
The House Armed Services Committee passed its version of the 2022 defense policy bill, 57-2.
Cybersecurity
Lawmaker to Propose Bill to Incentivize Industry Cybersecurity Cooperation Within Days
During congressional testimony, cybersecurity firm FireEye pushed for greater liability protections to be included in a draft cyber incident reporting bill.
Cybersecurity
House panel mulls mandatory disclosure bill
Industry reps at a hearing of the House Homeland Security Committee were supportive of new requirements to report hacks, but want more clarity on how to report and what constitutes a covered incident.
Cybersecurity
OMB Provides Tiered Instructions on Logging Requirements in Executive Order
A memo for agencies assigns criticality levels to monitoring activities along various categories and sets deadlines for compliance.
Digital Government
CISA Opens Sign Up for the President’s Cup Cybersecurity Competition
Federal employees and service members can put their cyber chops to the test.
Cybersecurity
Spending debate brews ahead of NDAA markup
Days before it considers its version of the 2022 must-pass defense policy bill, the House Armed Services Committee is setting up for a topline spending debate with a bill that highlights acquisition and cyber provisions.
Digital Government
Biden Administration Announces Tech Talent Fellowship Effort
The program is geared toward attracting young technologists to government work.
Cybersecurity
VA's Cussatt heads to State
The former acting CIO of the Department of Veterans Affairs is joining the Department of State's Bureau of Intelligence and Research, and Dr. Neil Evans will lead tech at VA on an acting basis.
Cybersecurity
Expired Driver’s Licenses Open Lane for Cybercriminals
Fraudsters send out texts or emails falsely warning that the target’s license needs to be updated, is missing information or is expiring.
Digital Government
Justice Department Announces New Cyber Fellowship Program
The program is designed for attorneys and requires a three-year commitment.
Cybersecurity
Lawmakers Call for Check on Software Acquisition Requirements in Defense Bill
Language from the House Armed Services’ cybersecurity subcommittee also proposes testing for non-kinetic attacks, and the creation of an inventory toward ending the use of legacy systems.
Ideas
Why Open-Source Tech Holds the Key to Modernization
As “avoid vendor lock-in” eclipses “do more with less,” open source offers freedom to tailor mission-specific solutions and cherry-pick right-sized applications.
Cybersecurity
CISA Encourages Mitigations in Face of OnePercent Group
The Cybersecurity and Infrastructure Security Agency shared an FBI flash report on the group which provides insight into the extent of the ransomware business ecosystem.
Cybersecurity