Cybersecurity
NSA Advocates Active Defense, as Industry Lawyer Advises Against Incident Reports
Speakers at a new conference hosted by cybersecurity firm Mandiant highlighted the challenge the government faces in motivating companies to report attacks on critical infrastructure.
Cybersecurity
Labor Group Highlights Conflict of Interest Issues in Cyber Workforce Legislation
The federal workers union wrote to senators opposing an amendment to the NDAA that would establish a civilian reserve at CISA.
Cybersecurity
Commercial Availability, Consequences Best Approach for Post-Quantum Transition
Ann Cox, the lead at the Department of Homeland Security’s research office, emphasized community engagement and technological needs for a successful quantum-resilient future.
Cybersecurity
4 Critical Infrastructure Sectors to Get New Cyber Rules, Per White House Official
The deputy national security advisor for cyber and emerging tech said it should be up to sector-specific agencies to decide who should implement appropriate cybersecurity defenses.
Cybersecurity
Lessons from China’s Cyberattack Strategy Can Help CISOs Better Manage Threats, Report Says
A new report from Booz Allen Hamilton analyzed more than a dozen Chinese-sponsored cyberattacks over the past decade.
Cybersecurity
White House's Internet of Things Security Initiative Gets an Official Meeting Date
The meeting was announced as the administration prepared to release its long awaited national security strategy.
Cybersecurity
Why CISA Won’t Release ‘Public’ Comments on Upcoming Performance Goals
CISA officials often stress their non-regulatory role, but Congress keeps trying to give the agency regulatory responsibilities.
Cybersecurity
New Report Shows Significant Improvement in Consumer Cyber Hygiene
Senior administration officials and cybersecurity leaders marking Cybersecurity Awareness Month weighed in on a consumer survey examining how behaviors have changed over the last three years.
Cybersecurity
National Cybersecurity Review Begins for All Levels of Government
Answering the survey—based on the National Institute of Standards and Technology’s cybersecurity framework—is mandatory for certain grant recipients.
Ideas
What Will it Take to End the Public Sector’s Cybersecurity Talent Gap?
The difference between the number of open cybersecurity positions and the number of people able to fill those roles has skyrocketed in recent years.
Cybersecurity
Watchdog Identifies Multiple Security Deficiencies at VA Medical Center in Louisiana
The VA’s Office of Inspector General found “critical and high-risk vulnerabilities on 37% of the devices” at the Louisiana-based medical center.
Cybersecurity
Industry Objections Spur Changes to Cybersecurity Provisions in Defense Bill
Key members of the House and Senate are altering proposals for identifying systemically important critical infrastructure and securing the software supply chain.
Cybersecurity
Federal Cyber Mandates for Water Infrastructure Are Too Costly to Implement, Experts Say
A House hearing saw expert testimony emphasizing the need for steady funding to cybersecurity programs in water utility providers—especially in rural regions.
Cybersecurity
CISA Plans to Measure the Effect of Coming Standards on Industry’s Cybersecurity
But big companies want to avoid agencies’ use of related performance goals in new regulation.
Ideas
New National Cybersecurity Strategy: A Much-Needed Overhaul for Digital Ecosystems
The strategy will likely be a dramatic re-posturing, following rapid changes in the cyber landscape over the past few years.
Cybersecurity
Traffic Safety Agency Issues Final Guidelines for Vehicle Cybersecurity
The National Highway Traffic Safety Administration will announce its final cybersecurity guidelines draft Friday as modern vehicles become more technologically-integrated.
Cybersecurity
NSA Releases Post-Quantum Algorithms, Aims for Full Implementation by 2035
The National Security Agency worked in conjunction with NIST to prepare stakeholders for upcoming quantum cryptographic requirements.
Cybersecurity
GSA Seeks Info on Automated and Expert Tools to Analyze Application Security
The agency requested details on the tools available to address weaknesses in the applications and testing process, in an effort to boost security measures.
Cybersecurity
Crucial Help Wanted at Cyber Director’s Office as CHIPS Act Adds to Responsibilities
The Office of the National Cyber Director is looking to fill two critical positions, while a recent executive order requires participation on a new steering council.
Cybersecurity