FISMA
-
The Department of Homeland Security told Congress Tuesday that it’s seeing significant dividends from a new legal authority Congress granted the department in 2014: the ability to force other federal agencies to take concrete steps to improve their cybersecurity posture.
March 29, 2017 -
The Office of Management and Budget’s fiscal 2016 Federal Information Security Management Act (FISMA) report to Congress shows more agencies have stronger cyber defenses in place.
March 10, 2017 -
Cybersecurity remains a tough challenge to tackle for Federal Retirement Thrift Investment Board, the agency that administers and oversees the Thrift Savings Plan. Under the Federal Information Security Modernization Act (FISMA), an independent auditor found the board lagging on risk management and access strategies.
February 27, 2017 -
The Office of Personnel Management lacks authorizations for 18 of its major security systems, the agency's inspector general said in a new report. The IG attributed many of OPM's IT security problems with a poor governance structure and shorthanded staff. OPM said it's recently made a few new hires and will have 24 information system security officers soon.
November 21, 2016 -
The 2017 Federal Information Security Management Act (FISMA) guidance to agencies redefines what constitutes a major cyber incident for a third time in the last decade.
November 14, 2016 -
Treasury Inspector General for Tax Administration says the Internal Revenue Service needs to work on strengthening the security of taxpayer information and employees if it wants a strong information technology program.
October 28, 2016 -
The Census Bureau is using a multi-pronged approach to cybersecurity as it gears up for the 2020 Census and balances sharing and securing massive amounts of data.
September 09, 2016 -
The Office of Management and Budget updated Circular A-130 with the requirement for agencies to focus on risk management when deciding on how to protect networks and systems.
August 08, 2016 -
Leadership of the House Oversight and Government Reform Committee wants to know why the White House has yet to meet its obligations under a major information security law.
July 29, 2016 -
Ron Gula, chairman and co-founder of Tenable Network Security, highlights three steps for agencies to address cyber threats in real-time.
July 27, 2016 -
House Science, Space and Technology Committee Chairman Lamar Smith (R-Texas) wrote letters to both the Office of Personnel Management and Office of Management and Budget about their agencies' responses to a series of cyber breaches within the past year. Specifically, Lamar questioned whether foreign nationals and contractors had access to major IT systems and role they play in securing them.
July 19, 2016 -
The Federal Deposit Insurance Corporation revealed five instances in which outgoing employees inadvertently downloaded information onto their personal storage devices. FDIC officials said the agency is conducting a 60-day review that includes additional employee training and the application of encryption software to help prevent future breaches.
May 09, 2016 -
The Office of Management and Budget released its annual guidance for Federal Information Security Management Act (FISMA) reporting and the cybersecurity strategy and implementation plan (CSIP) for civilian agencies. Both of these documents are part of the broader change happening across government to improve cybersecurity.
November 02, 2015 -
The White House issued the draft version of Circular A-130 updating the 15-year-old policy, specifically with a host of new definitions and requirements for protecting networks and systems.
October 21, 2015 -
As OMB finalizes new FISMA metrics for 2016, agencies and IGs continue to struggle with a disconnect over risk versus compliance.
September 21, 2015