Digital Government
Intelligence Community CISO Sees a More Data-Centric Future
Matt Conner pointed to several priorities on the horizon.
Digital Government
Addressing the Tech Talent Gap
Nextgov takes a look at recruiting, retaining and reskilling employees for hard-to-fill positions in IT and cybersecurity.
Cybersecurity
VA watchdog warns of security risks from undocumented PIV cards
A new report warns contracting officers at the Veterans Health Administration are failing to comply with agency and federal guidelines ensuring contractor personnel return personal identity verification (PIV) cards after employment.
Cybersecurity
CISA Starts Cataloging Bad Practices in Cybersecurity
The agency plans to keep updating the narrow list based on feedback from cybersecurity professionals.
Cybersecurity
White House Plans to Attribute the Microsoft Exchange Hack Soon
Microsoft has already attributed the broad-scale compromise of its on-premises mail servers to Chinese nation-state actors.
Ideas
Researchers: Users Shouldn't Be on the Hook for Data Security
In reality, we have almost no power over our data and who uses it for what, according to the study.
Ideas
Ransomware, Data Breach, Cyberattack: What Do They Have to Do with Your Personal Information, and How Worried Should You Be?
Even if your data has not been exposed yet, why not take the time now to protect yourself?
Cybersecurity
Federal job satisfaction continues to lag behind private sector
The annual 'Best Places to Work' report indicates that almost 60% of the federal workforce teleworked full-time during the peak lockdown period of the COVID-19 pandemic.
Cybersecurity
Lawmaker, Tech Companies Clash on Software Transparency Requirements
The National Institute of Standards and Technology has defined "critical software" in accordance with an executive order to institute procurement standards federal agencies must follow.
Cybersecurity
U.S. Troops on Base Less Likely to Seek Extremist Content Than Americans in General, Study Finds
Service branches differ in their engagement with anti-Black extremism or anti-Semitic conspiracy theories, internet research firm says in upcoming report.
Cybersecurity
Hassan, Cornyn float bill to create new federal cybersecurity training programs
One part of the bill would create a pilot program to train vets to work in cybersecurity.
Ideas
Leveraging Encryption Keys to Better Secure the Federal Cloud
In the same way we use a key to lock valuable assets in a safe deposit box, agencies can lock up encryption keys.
Cybersecurity
New Laws Are ‘Probably Needed’ to Force US Firms to Patch Known Cyber Vulnerabilities, NSA Official Says
Too many firms are shying away from replacing old gear that is only getting easier for criminals to attack.
Cybersecurity
DOD Offering Defense Industrial Base a ‘Krystal Ball’ Into Adversary Insights
A pilot program is being run out of the Defense Department’s Cyber Crime Center, which is a key part of a strategy to secure the defense industrial base as the scope and severity of cyberattacks increase.
Digital Government
Pentagon May Be Underestimating IT Investment Risks, GAO Says
The Government Accountability Office evaluated 10 programs at a higher risk level than what was reported by DOD, according to a new report.
Cybersecurity
Bill Would Create Cyber Workforce Training Programs at CISA and VA
The two programs would look to increase the pool of cybersecurity experts for the public and private sectors, but with a focus on preparing trainees for federal jobs.
Cybersecurity
Small businesses ask Congress to focus CMMC on primes and DOD
Jonathan Williams, a partner at the Washington, D.C.-based law firm PilieroMazza, told lawmakers much of small businesses concerns could be assuaged if DOD and prime contractors shoulder the burden.
Cybersecurity
NIST defines 'critical software' under the cyber EO
The National Institute of Standards and Technology's new definition of "critical software" is foundational to new federal efforts to exert more control over the code supply chain.
Cybersecurity
Key Lawmaker Calls on Pentagon Leadership to Act on Cyber Certification Program
Members of the House Small Business Committee heard complaints of poor communication and coordination from the department on implementation of a controversial third-party auditing process.
Cybersecurity