Ideas

Defense Leaders Can Mitigate Telework Risks

Remote work promises to make the workforce more responsive and efficient, but it also presents significant security challenges, a former ODNI cyber chief says.

Cybersecurity

A tribute to Soraya Correa, DHS' procurement icon

Steve Kelman reflects on a 40-year career that brought real innovation to federal acquisition.

Cybersecurity

DOD looks for answers on GPS data spoofing

The Defense Department is looking for technology solutions to obviate the growing threat of location data spoofing targeting satellite-based systems.

Cybersecurity

House Republicans Ask Commerce to Add Former Huawei Entity to Government Blacklist

They also requested a briefing from the End-User Committee which designates additions to the Entity List.

Cybersecurity

Agency zero trust does not start from point zero

The good news is that consistent IT policy spanning previous presidential administrations has allowed the federal government to slowly put the necessary building blocks in place for the inevitable zero trust architecture journey.

Modernization

NSA Awards Secret $10 Billion Contract to Amazon

Much of the NSA’s most prized intelligence data may be moving to the cloud.   

Podcasts

Critical Update: How Federal Agencies Can Help Avert Quantum Catastrophe

The White House is working on plans to roll out new cryptographic systems that will require epic levels of funding from Congress and coordination, both within the government and in partnership with industry. 

Ideas

What Is Pegasus? A Cybersecurity Expert Explains How the Spyware Invades Phones and What It Does When It Gets In

Since 2019, Pegasus users have been able to install the software on smartphones with a missed call on WhatsApp.

Cybersecurity

CISA Steps Up Governmentwide Recruitment Effort With New Training Guide

The guide brings together various ways the agency and its partners are trying to address the government's perennial workforce challenge.

Ideas

Augmentation for Data-Driven Success

Augmentation techniques can help the Defense Department implement its data strategy goals.

Cybersecurity

Inconsistent job coding may undercut DOD’s cyber workforce efforts

A DOD inspector general audit found that while the Pentagon has made strides, inconsistent job coding for civilian cyber work roles across filled and vacant positions may hinder recruiting and retention.

Cybersecurity

Report Draws Attention to Vulnerabilities in Commercial-Off-the-Shelf Products 

Commercial products bought without modification are largely exempt from government acquisition regulations, including the Defense Department’s emerging certification program.

Cybersecurity

CISA launches new initiative to combat ransomware

The Joint Cyber Defense Collaborative (JCDC) will allow the federal government and corporate partners share information to combat ransomware.

Cybersecurity

Senate Homeland Security Committee Advances Workforce, Supply Chain Bills

Lawmakers look to grow an already lengthy to-do list at the Cybersecurity and Infrastructure Security Agency. 

Cybersecurity

Labor Department moves toward zero trust

Labor Department CISO Paul Blahusch detailed how his agency ramped up its implementation efforts around zero trust in recent months, from establishing an entirely new team to proposing a project for the Technology Modernization Fund.

Ideas

How the Energy Department Can Improve Cybersecurity in the Energy Industry

The Energy Department has an obligation to protect both public and private energy interests on critical infrastructure.

Cybersecurity

Advisory Details How to Defend Container Tech from Crypto Miners

Old fashioned data theft is still the main reason adversaries are targeting a popular open-source application management system.

Cybersecurity

National cyber director backs new Bureau of Cyber Statistics

The White House is still considering whether to support the Cyberspace Solarium Commission's recommendation to establish a Bureau of Cyber Statistics, National Cyber Director Chris Inglis said on Monday, while stressing the urgent need for the federal government to begin assessing and publishing data on cybersecurity incidents.