Cybersecurity
New cyber talent system, years in the making, goes into effect at DHS
Agency officials estimate that around 1,000 of its 1,500 cyber vacancies could fit into the new scheme.
Cybersecurity
CISA chief tees up cyber directives for the water and chemical sectors
CISA Director Jen Easterly said new directives for the water and chemical industries were coming soon in the wake of the passage of the $1.2 trillion Infrastructure Investment and Jobs Act, which includes cybersecurity requirements for public water systems.
Cybersecurity
OMB official reviews progress six months after the cyber EO
A federal official overseeing the implementation of the cybersecurity executive order signed in May said many agencies have met its aggressive deadlines so far.
Cybersecurity
CISA orders civilian agencies to fix known flaws in six months
The binding operational directive issued Nov. 3 requires federal agencies to remediate known exploited vulnerabilities on their networks under specific timeframes is also intended to serve as guidance for the private sector and state and local governments.
Cybersecurity
Senate Republicans seek IG probe of TSA pipeline directives
Republican leaders on the Senate Homeland Security and Governmental Affairs Committee are calling for an inspector general probe into how the Transportation Security Administration developed its first ever pipeline-specific security directives.
Cybersecurity
Federal cyber leaders assess TMF awards
National Cyber Director Chris Inglis said he co-chaired a meeting with top federal cyber leaders this week to analyze current projects with investments from the Technology Modernization Fund.
Cybersecurity
Lawmakers examine TSA's growing role in cyber
Lawmakers on the Homeland Security Committee convened cybersecurity experts and key stakeholders from the transportation industry to discuss new rules in the works for the transportation sector.
Cybersecurity
CISA seeks 24-hour timeline for cyber incident reporting
Two separate Senate bills set different deadlines for federal contractors, critical infrastructure providers and other covered companies to report cyber incidents to the federal government.
Cybersecurity
The CISO reporting structure is broken
The commitment to managing cyber risk is a primary concern, but is often consolidated with IT priorities. This creates a conflict – does IT or security come out on top?
Cybersecurity
Clarke stresses cooperation as momentum builds on Capitol Hill behind breach disclosure legislation
Rep. Yvette Clarke (D-NY), chair of the Cybersecurity, Infrastructure Protection and Innovation subcommittee, said building trust with critical infrastructure entities was fundamental to expanding information sharing between the public and private sectors.
Cybersecurity
How training fits into cyber workforce development
In a tight market for cyber talent, training is one way to show the workforce you've invested in them, says Jason Gray, the Department of Education's CIO and co-chair of the CIO Council's Workforce Committee.
Cybersecurity
White House looks to step up endpoint monitoring
The Biden administration is requiring agencies to provide visibility into their endpoint detection and response efforts as part of the cybersecurity executive order.
Cybersecurity
CISA chief looks to new system to attract cyber talent
Despite increasing competition among the public and private sectors in hiring top cyber talent, CISA Director Jen Easterly said she has high hopes for a new personnel management system which reduces friction in hiring and offers new career paths.
Cybersecurity
DHS adds cyber requirements for transportation industry
The Transportation Security Agency and the Coast Guard are getting increased authority over industry cybersecurity.
Cybersecurity
Bipartisan FISMA update drops
Leaders of the Senate Homeland Security and Government Affairs Committee introduced legislation on Monday to update the Federal Information Security Modernization Act to clarify the role of CISA in defending federal networks.
Cybersecurity
CISA chief: Cyber incident reporting can't become a burden
Jen Easterly, the director of the Cybersecurity and Infrastructure Security Agency, stressed the importance of cyber incident reporting but said mandates should be careful of potentially overburdening companies -- and CISA -- with "reporting noise."
Cybersecurity
Spending the federal cybersecurity budget: what's next?
A lot of new money is in the pipeline to help the federal government confront cybersecurity problems -- but what's the best way to allocate those resources?
Cybersecurity
Shutdown looms as Congress faces spending deadlines
Most agencies are still operating under shutdown plans crafted under the Trump administration, but there are provisions for continuing pandemic programs and operations.
Cybersecurity
Cyber officials look to toughen up reporting requirements
The head of CISA told lawmakers that federal breach disclosure rules should be accompanied by compliance mechanisms, including fines.
Cybersecurity