Hubbard Radio Washington DC, LLC. All rights reserved. This website is not intended for users located within the European Economic Area.
Maybe Hansang Bae once worked at Nike. When he’s taking about zero trust, he’s so passionate that you expect at any moment he’s going to say, “Just do it.” What he definitely did say was: “My advice is to get going. The technology is mature enough.”
Zero-trust architecture has been top-of-mind for the federal government, especially as we approach the one-year countdown for the White House’s zero-trust memorandum deadline.
Getting rid of passwords once and for all is really about creating strong security that’s also frictionless for users, explains Okta’s Sean Frazier in a conversation with Federal News Network’s Jason Miller. What will that take?
Vendors still have a Sept. 22 deadline to submit bids for the General Services Administration’s OASIS+ governmentwide professional services vehicle despite a protest before GAO.
Federal agencies looking to accelerate modernization of their information technology systems should not overlook a seemingly basic step. “The first thing that you should do is look at your portfolio, specifically your application portfolio, and rationalize it,” said Dave Vellante, chief analyst for the online publications SiliconANGLE and theCube.
Alex Whitaker, the director of government affairs for the National Association of State Chief Information Officers, said pushing for broader adoption of the .gov domain and harmonization of federal cyber regulations.
The Army's deputy chief of staff for intelligence says military leaders need to understand both the value of OSINT, as well as "how carefully it has to be managed and implemented."
The cybersecurity team at the National Institute of Standards and Technology (NIST), is about to finalize a new version of a signature document: The Cybersecurity Framework. Next week it holds a workshop to get one last round of input on the new framework draft. For more, Federal Drive Host Tom Temin spoke with Kevin Stine, the Chief of NIST's Applied Cybersecurity Division.
One thing the Transportation Security Administration (TSA) never stops tinkering with is passenger screening, both techniques and supporting technology. Screening is light years from what it was in the days right after an earlier 9/11. Now it has published what it calls an open architecture roadmap, aimed at improving screening performance. For details on the roadmap and its goals, Federal Drive Host Tom Temin spoke with Erick Rekstad, SA Systems Engineer.
The authors emphasized the challenges in assessing whether an AI-enabled system will work as it’s intended are not unique to the Air Force, and are common across federal agencies.
Lt. Gen. Robert Skinner, DISA’s director and commander of the Joint Force Headquarters-Department of Defense Information Network (JTF-DoDIN), said the agency is undertaking three separate tests of tools to better protect internet boundaries.
The Cybersecurity Maturity Model Certification program has been in gestation at the Defense Department longer than a baby elephant. CMMC is still not operational, but, boy, has it produced documents. Just out, new scoping documents. Do contractors need to read them? To discuss that topic, Federal Drive Host Tom Temin was joined in studio by Holland and Knight contracting attorney Eric Crucius.
CISA is nearly done writing the proposed rules for cyber incident reporting, while the CMMC rules may be out for comment before the end of 2023.
CISA’s new Secure-by-Design, Secure-by-Default principles offer a road map to guide technology providers to a more secure future. By addressing integration, automation and collaboration, agencies can improve the odds our shared technology ecosystem reaches that destination.
Weekly interviews with federal agency chief information officers about the latest directives, challenges and successes. Follow Jason on Twitter. Subscribe on Apple Podcasts or Podcast One.