FISMA

  • Sol Cates, chief security officer for Vormetric, argues that while new policies and regulations are important, the answer to an organization’s cybersecurity problems starts with making a decision to dedicating more resources to solutions and less to filling out forms.

    September 15, 2015
  • A bipartisan group of six senators introduced the Federal Information Security Management Reform Act of 2015 to give DHS the clout it’s been lacking over the last five years and, in some respects, put it on par with the National Security Agency.

    July 23, 2015
  • Three hearings. Nearly seven hours of testimony. Enough frustration to fill the Potomac River. That was Katherine Archuleta’s week. The director of the Office of Personnel Management had a bullseye on her back as House…

    June 30, 2015
  • President Barack Obama said \"significant vulnerabilities\" exist and will continue to accelerate in government and private sector systems, unless changes are made.

    June 08, 2015
  • Five agencies score zero on using strong authentication with their IT networks. That's according to the White House's annual compliance review of the Federal Information Security Management Act. Nextgov reports three of those agencies had cybersecurity breaches in recent years. Simon Szykman is chief technology officer for the federal services division at Attain, and former chief information officer of the Commerce Department. He broke down the results from the 2014 FISMA review on In Depth with Francis Rose.

    March 11, 2015
  • Federal agency Inspectors General are submitting annual reports to meet the requirements of the Federal Information Security Management Act. But your agency's networks may not actually be more secure because of that compliance and those reports. Those IG reports are still good news though, says Dan Mintz, former Transportation Department Chief Information Officer and now principal at ESEM Consulting. Dan tells In Depth with Francis Rose that's because the IGs haven't always been so hands-on with FISMA compliance.

    December 05, 2014
  • The Veterans Affairs Department will not receive the final results for its 2014 FISMA audit until next spring, but auditors already have informed IT officials that they've identified material weaknesses for the 16th year in a row. Department IT officials say progress on closing IG recommendations and securing their systems and data is real.

    November 17, 2014
  • The Homeland Security Department has reviewed about 18 new or improved cybersecurity tools or technologies that may be added to the continuous diagnostics and mitigation program (CDM). John Streufert, the director of Federal Network Resilience at National Protection and Programs Directorate in DHS, said CDM is not delayed and on track to deliver results.

    October 23, 2014
  • In fiscal 2015 FISMA guidance, OMB is trying to close a big hole exposed during the government's reaction to the Heartbleed vulnerability. The White House is giving DHS the authority to regularly conduct proactive scans of certain civilian agency networks. DHS made it clear to Congress earlier this year the delay in getting permission from agencies to scan their networks cost them days in response time during Heartbleed.

    October 03, 2014
  • The Senate would like to grant new powers to federal chief information officers and update federal IT laws that haven't gotten much attention for the past dozen years. Those are a couple of the effects of new legislation the Senate Homeland Security and Governmental Affairs approved recently. One of the bills is the Senate version of the Federal IT Acquisition Reform Act -- the other is an update to the Federal Information Security Modernization Act, which Senators have been trying to modify for the past several years, without much success. She said on In Depth with Francis Rose the proposals are a big step in the right direction.

    July 07, 2014
  • Scott Gaydos, chief technologist, Federal Healthcare, U.S. Public Sector, HP Enterprise Services, discusses how his company can help your agency with its cloud initiatives. June 24, 2014

    June 24, 2014
  • The Senate Homeland Security and Governmental Affairs Committee members will introduce and markup the Federal Information Security Modernization Act of 2014 Wednesday. The bill would require OMB to rescind a major section of Circular A-130 in order to fix long-standing complaints with FISMA's reauthorization requirements.

    June 24, 2014
  • In this edition of Inside the Reporter's Notebook, Executive Editor Jason Miller shares news and buzz about the IT and acquisition communities. Senate lawmakers prepare to mark-up IT reform bill next week. CIO's spend time at camp where OMB and others emphasize the word of the year: effectiveness.

    June 20, 2014
  • The 2013 FISMA report to Congress shows the Veterans Affairs Department continues to struggle with cybersecurity and has more than 6,000 items on its plans of actions and milestones and continued weaknesses in access and configuration management controls. VA CIO Stephen Warren details several initiatives to address many of the 35 recommendations.

    May 30, 2014
  • Sen. Tom Carper (D-Del.), chairman of the Homeland Security and Governmental Affairs Committee, said Thursday the committee plans to mark up a bill on May 21 to give DHS more tools to hire cyber workers more easily.

    May 16, 2014