Cybersecurity
-
The Defense Department ranks high among federal agencies seeking expertise in quantum computing, the next big thing in computing. DoD agencies have established several ways to recruit and hire people with chops in quantum sub-skills. But the Government Accountability Office (GAO) finds, they're not all following the best practices for getting the people they need. For more, the Federal Drive with Tom Temin spoke to Candice Wright, the GAO's Director of Science, Technology Assessment and Analytics .
December 27, 2023 -
Experts say the national cyber strategy was the biggest development of 2023, but several other events also made for an interesting year in cyber.
December 26, 2023 -
The White House has outlined major initiatives to boost the cyber workforce, with federal agencies leading the charge in adopting "skills-based" hiring.
December 25, 2023 -
The much-anticipated rule lays out DoD's plan for the Cybersecurity Maturity Model Certification requirements.
December 22, 2023 -
Congress wants spy agencies to hire more experts in financial intelligence, emerging technology.
December 20, 2023 -
Wayne LeRiche, the federal civilian field chief technology officer and solutions architect for Palo Alto Networks Federal, said secure access service edge (SASE) sets a framework for agencies to get more easily implement a zero trust architecture.
December 20, 2023 -
The Biden administration's executive order on cybersecurity from three years ago alerted the uninitiated to the existence of software bills of material (SBOMs). The idea is, knowing all of the elements that make up a software package can help buyers better understand their cybersecurity holes. But can the SBOM also give hackers the blueprint they need. For analysis, the Federal Drive with Tom Temin talked with Endor Labs adviser and former federal cybersecurity manager Chris Hughes.
December 18, 2023 -
More organizations worried about cybersecurity are turning to software bills of material (SBOMS). Getting them from software suppliers as a matter of compliance is one thing. Gaining cybersecurity intelligence from them is another.
December 18, 2023 -
Zero trust is driving the security conversation today across both the public and private sectors. Within government, it’s a top priority as evidenced by the directives, mandates and policies that have been issued by the…
December 15, 2023 -
In an email to agencies earlier this fall, CISA says email filtering and DNS sinkholing capabilities are no longer as valuable as they once were and are going away in December.
December 14, 2023 -
New guidance from lead cybersecurity agencies and industry partners provides both individual developers and large companies with software supply chain security best practices
December 13, 2023 -
FedRAMP plays a vital role in ensuring the government can operate and innovate securely, and it faces a busy year of restructuring on the road to efficiency that meets modern demands. Federal agencies should join that ride to become champions of innovation instead of captives of compliance. Automation is the highway to progress on that journey, and OSCAL is its fast-speed lane.
December 13, 2023 -
Six federal and industry experts praised OMB’s revamped cloud security memo for leaning in on automation and modernizing the Joint Authorization Board concept.
December 12, 2023 -
As agencies ratchet up cyber controls, many find that improving user experience becomes equally critical. For an exclusive round table, we get tips and insights from security leaders at GSA, NGA, NRO, SEC and USPS.
December 12, 2023 -
The addition of security baselines for Google Workspace products comes after CISA already released baseline configurations for Microsoft 365.
December 12, 2023
