Cybersecurity
White House Memo Orders Agencies to Identify Critical Software
The memo follows up President Joe Biden’s executive order in May.
Cybersecurity
Report Draws Attention to Vulnerabilities in Commercial-Off-the-Shelf Products
Commercial products bought without modification are largely exempt from government acquisition regulations, including the Defense Department’s emerging certification program.
Cybersecurity
Senate Homeland Security Committee Advances Workforce, Supply Chain Bills
Lawmakers look to grow an already lengthy to-do list at the Cybersecurity and Infrastructure Security Agency.
Ideas
How the Energy Department Can Improve Cybersecurity in the Energy Industry
The Energy Department has an obligation to protect both public and private energy interests on critical infrastructure.
Cybersecurity
DOD’s Supply Chain Security Should be Strategic Priority, Congressional Task Force Says
The Defense Critical Supply Chain Task Force released six legislative proposals calling for less dependence on adversaries like China and improved supply chain visibility.
Digital Government
Zero Trust-Like Approach Needed for Microelectronics Industry, Former DOD Official Says
Onshoring doesn’t mean vulnerabilities associated with chips will be instantly mitigated, the official said.
Cybersecurity
VA’s Cybersecurity Still Missing Critical Zero-Trust Element, Watchdog Says
An official from the Government Accountability Office said she is encouraged by the formation of an investment review board at the department and intends to monitor it closely.
Ideas
How the U.S. Can Beat the Semiconductor Shortage (and China)
We must reverse our reliance on foreign manufacturing and build a better microelectronic systems industrial base.
Cybersecurity
Bipartisan Bill Bolsters FCC Motion to Ban Suspect Chinese Telecom Equipment
The Federal Communications Commission is already set to vote on a notice of proposed rulemaking on its equipment authorization program.
Ideas
Chip Shortage Threatens Modernization—and Everything Else
Initially, the chip shortage mostly affected car manufacturers.
Digital Government
White House Outlines ‘Made in America’ Executive Order Implementation
Agencies must designate a senior official to spearhead efforts to support domestic manufacturing.
Modernization
FBI Seeks a Vendor to Help with Multiyear IT Modernization Project
The Office of the Chief Information Officer is creating a new contract to help with the IT Modernization Initiative and other major efforts.
Cybersecurity
Biden’s Nominee to Lead CISA Interested in Reforming FISMA
Members of the Senate Homeland Security Committee pressed Jen Easterly and other key nominees on supply chain security and workforce challenges.
Cybersecurity
Biden Redirects Agencies on Securing Information and Communications Technology
A new executive order revokes bans on WeChat and TikTok but retains and adds to a Trump edict on U.S. tech, especially “connected software applications” tied to foreign adversaries.
Policy
White House Presents Steps to Address Supply-Chain Problems
A new task force would examine issues that surfaced during the pandemic, including semiconductor shortages.
Emerging Tech
DOD-NTIA Open 5G Challenge Could Lead to New Requirements
A Defense Department official said DOD’s 5G prototyping is also examining the benefits of hardware and software bills of materials to scrutinize the supply chain.
Ideas
Executive Order Hints at FedRAMP Alternatives
The order calls for modernizing the cloud-security program and opens the door for other frameworks to be used for authorization.
Cybersecurity
NTIA Wants Feedback on Software Transparency Plan
One high-profile expert raised the ever-looming workforce challenge in suggesting the juice might not yet be worth the squeeze.
Cybersecurity
NIST Will Do Gap Analysis Before Creating Software Standards for Executive Order
The Government Accountability Office told lawmakers enforcement, through expanded reporting, of agencies’ supply chain security activity is “the thing that has to happen.”
Cybersecurity