CISA and OMB will require civilian agencies to develop vulnerability disclosure policies, allowing outside experts who have “seen something” that looks like a cyber weakness to “say something” to those who can fix it.
In today’s Federal Newscast, the Department of Veterans Affairs said it’s concerned by recent allegations of sexual harassment against American Federation of Government Employees National President J. David Cox.
Jeanette Manfra, assistant director for cybersecurity at the Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency, is leaving her post at the end of the year for the private sector, according to a CISA official.
CISA’s Jeanette Manfra said her office has talked with 50 agencies, cloud and network vendors and others to create guidance to help agencies more easily meet the Trusted Internet Connections requirements.
CISA will give agency and industry partners an opportunity to compare notes on the best way to securely share cyber threat information.
Several recent updates to federal IT policies opened the door for OMB to consider how the concept of agile for federal regulations could work, while the IBM Center for the Business of Government and NAPA are looking at this approach too.
The ICT Supply Chain Risk Management Task Force at DHS issued four recommendations for how agencies and industry can address threats.
Federal Chief Information Security Officer Grant Schneider, speaking Thursday at the Cybersecurity and Infrastructure Security Agency’s summit, said agencies have “come a long way” on cybersecurity. He pointed to overall higher Federal Information Security Management…
Manny Castillo, a senior IT security adviser at the FBI, said the bureau does all its penetration testing internally and has no plans on changing that.
The Office of Management and Budget said Quality Service Management Organizations will make it easier for agencies to adopt back-office shared services.