Cybersecurity
DHS adds cyber requirements for transportation industry
The Transportation Security Agency and the Coast Guard are getting increased authority over industry cybersecurity.
Cybersecurity
Bipartisan FISMA update drops
Leaders of the Senate Homeland Security and Government Affairs Committee introduced legislation on Monday to update the Federal Information Security Modernization Act to clarify the role of CISA in defending federal networks.
Cybersecurity
CISA chief: Cyber incident reporting can't become a burden
Jen Easterly, the director of the Cybersecurity and Infrastructure Security Agency, stressed the importance of cyber incident reporting but said mandates should be careful of potentially overburdening companies -- and CISA -- with "reporting noise."
Cybersecurity
Spending the federal cybersecurity budget: what's next?
A lot of new money is in the pipeline to help the federal government confront cybersecurity problems -- but what's the best way to allocate those resources?
Cybersecurity
Shutdown looms as Congress faces spending deadlines
Most agencies are still operating under shutdown plans crafted under the Trump administration, but there are provisions for continuing pandemic programs and operations.
Cybersecurity
Cyber officials look to toughen up reporting requirements
The head of CISA told lawmakers that federal breach disclosure rules should be accompanied by compliance mechanisms, including fines.
Cybersecurity
House reconciliation bill includes nearly $800 million for CISA
The funding supports the implementation of President Joe Biden's May executive order on cybersecurity and workforce development.
Cybersecurity
Report: Fostering a diverse cybersecurity workforce
Experts at an Aspen Institute event explained some roadblocks to cultivating a diverse cybersecurity workforce and offered potential solutions, including putting less reliance on formal certification.
Cybersecurity
Chris Inglis scopes out cyber turf
The newly installed National Cyber Director offered his take on the roles and responsibilities of his office, the Cybersecurity and Infrastructure Security Agency, the National Security Council and agency IT and security operations in responding to federal cyber incidents.
Cybersecurity
White House hits the gas on zero trust
Newly released strategy and technical guidance documents covering zero trust and cloud security are open for comment as part of a federal push to improve federal government cybersecurity.
Cybersecurity
House panel mulls mandatory disclosure bill
Industry reps at a hearing of the House Homeland Security Committee were supportive of new requirements to report hacks, but want more clarity on how to report and what constitutes a covered incident.
Acquisition
Christopher Krebs: Truth and consequences
Krebs spent 2020 working furiously to ensure the integrity of our elections, while also ensuring that ransomware, software supply-chain vulnerabilities and a range of other rapidly escalating risks didn't cripple government operations or the nation's critical infrastructure.
Cybersecurity
DHS stands up new excepted service for cyber talent
The new human resources system, which is launching seven years after legislation authorizing special pay for cybersecurity specialists, is a complete move away from traditional federal HR practices, the agency said.
Cybersecurity
New Solarium report highlights policy strides, funding stumbling blocks
Much of the Cyberspace Solarium Commission's recommendations are "on track" to being implemented, but funding issues loom for some.
Cybersecurity
Agency zero trust does not start from point zero
The good news is that consistent IT policy spanning previous presidential administrations has allowed the federal government to slowly put the necessary building blocks in place for the inevitable zero trust architecture journey.
Cybersecurity
CISA launches new initiative to combat ransomware
The Joint Cyber Defense Collaborative (JCDC) will allow the federal government and corporate partners share information to combat ransomware.
Cybersecurity
New report details America's water infrastructure cyber vulnerabilities
Water utilities across the country are plagued by a lack of cybersecurity funding and qualified personnel, a ThreatLocker report warns, as officials work to create new guidelines on securing critical infrastructure.
Cybersecurity
CISA debuts vulnerability disclosure platform
Federal civilian agencies can tap a bug reporting system fielded as a shared service by the Cybersecurity and Infrastructure Security Agency to gather information on potential website and software vulnerabilities.
Cybersecurity
DHS recent hiring sprint shows promise, but lawmakers still see gaps in the federal cybersecurity workforce
The federal government continues to face challenges in recruiting a skilled cybersecurity workforce, amid heavy private sector demand and obstacles built into the hiring process, but there are some recent signs that longstanding efforts to improve the situation are starting to pay off.
Cybersecurity