With an increasing attack surface resulting in millions of new threats every year, partially updating C&A documents every six months, re-mediating a few Plan of Action and Milestones, and updating all docs every three years, won’t, and doesn’t, keep the bad guys out of Federal networks. […]
Jeff T.H. Pon, the nominee for director of the Office of Personnel Management, said that his top priority for the agency will be IT modernization. “Outside of work, Federal employees are able to access nearly any piece of information they need, from their bank accounts to student loans to car insurance, all on their phone,” he said. “We need to work toward providing the employees of the Federal government with the same conveniences with regards to their employment within the Federal government, with appropriate attention to information security.”[…]
With the need for secure, reliable communications at an all-time government high, the solutions on EIS aren’t just in the “nice to have” category, they’re things your office “must have” if it is to continue meeting critical missions well, says Steve Boberski of Collab9.[…]
Only one Federal agency achieved the highest scores in each of the cybersecurity framework areas in the Federal Information Security Management Act report for fiscal year 2016. The Federal Election Commission, which governs the financing of Federal elections, received top scores for identifying, protecting, detecting, responding, and recovering from cybersecurity incidents.[…]
The US-CERT cybersecurity incident notification guidelines that go into effect April 1, 2017, will affect all Federal departments and agencies, as well as state, local, tribal, and territorial government entities, among others.[…]
A low-key change has taken place that sources say has shifted the National Institute of Standards and Technology Framework for Improving Critical Infrastructure Cybersecurity from a purely voluntary practice to a mandatory standard for Federal agencies….Reactions to the White House’s open source coding push….And grumbling about Silicon Valley imports.[…]
The Federal government is the leading creator, collector, consumer, and communicator of information in the United States. If there are changes to its regulatory requirements, it is possible those changes will eventually spread into the commercial sector. Here’s what that sector needs to know.