Cybersecurity

• 
  Software development and continuous testing are the wind beneath the F-35’s wings

  The team behind the F-35 Joint Strike Fighter have one mission, and that is to keep the operation of the jet safe for the warfighters who rely on it. 

  Federal Insights

  May 21, 2024
• 
  The browser-shaped hole in ZTNA

  As webapps become a trusted part of the way organizations do business, the risk unevaluated websites pose to zero trust architectures is underestimated.

  Commentary

  May 21, 2024
• 
  US says cyberattacks against water supplies are rising, and utilities need to do more to stop them

  The Environmental Protection Agency warns that cyberattacks against water utilities around the U.S. are becoming more frequent and more severe.

  Technology

  May 20, 2024
• 
  VA building out career development portal to boost cyber skills

  After creating an internal career development portal for cyber employees, the VA’s Office of Information and Technology aims to build out the platform further.

  Hiring/Retention

  May 20, 2024
• 
  Second senior cyber leader this week to exit federal service

  Eric Goldstein, the executive assistant director for cybersecurity for CISA, will leave his role after three plus years in June.

  People

  May 16, 2024
• 
  State, NOAA, Education win new IT modernization money

  The Technology Modernization Fund Board awarded three agencies a total of $49.2 million for AI, IT modernization and cybersecurity projects.

  IT Modernization

  May 16, 2024
• 
  State Department employing continuous automated testing in software development

  The Diplomatic Security at the State Department is working on establishing a CI/CD pipeline with security involved throughout the process of development.

  Federal Insights

  May 15, 2024
• 
  Energy Dept advisor studying intersection of OT and zero trust

  CISOs across the public and private sectors are confronting quickly evolving cyber threats, including API attacks and supply chain compromises.

  Cybersecurity

  May 14, 2024
• 
  NIST aims to cut ‘tech speak’ from cyber workforce framework

  The NICE framework, which defines cyber workforce roles, just added new competencies and updated skills. But for cyber leaders at NIST, that’s only the start.

  Technology

  May 14, 2024
• 
  Federal CISO DeRusha leaving

  Mike Duffy, the associate director for capacity building in the cyber division at CISA, will take over for DeRusha on an acting basis.

  People

  May 14, 2024
• 
  Cybersecurity challenges persist, but CISA is up to the task

  There are hundreds of thousands of discovered vulnerabilities in software, but only a small fraction of these vulnerabilities are actively exploited.

  Commentary

  May 14, 2024
• 
  Congressmen request Microsoft president testify about ‘cascade of security failures, cybersecurity shortfalls’

  Leaders on the House Homeland Security Committee wrote to Brad Smith, the vice chairman and president of Microsoft, asking him to testify on May 22.

  Federal Newscast

  May 13, 2024
• 
  Biden’s executive order to protect Americans’ personal data: A step in the right direction, but other factors must still be addressed

  Every day, Americans’ data is legitimately sold and resold through data brokers.

  Commentary

  May 10, 2024
• 
  DoD continues domination of President’s Cup competition

  Michael Harpin, the competitions section chief for the President’s Cup Competition at CISA, said the contest featured new challenges like an escape room.

  Cybersecurity

  May 10, 2024
• 
  Two DoD agencies team up to collect software vulnerabilities

  Vulnerability Disclosure Program started in April, the DoD Cyber Crime Center, DC3, working with the Defense Counterintelligence and Security Agency.

  Cybersecurity

  May 09, 2024