Cybersecurity
CISA guidance focuses on post-quantum cryptography tools
The guidance nudges federal network operators to adopt automated cryptography discovery and inventory tools as a step in managing post-quantum cryptography updates.
Cybersecurity
Amid shutdown anxiety, federal agencies are running up against an IT security deadline
While budget negotiations play out on Capitol Hill, federal agency CIOs are also on the clock to ensure the bulk of their information technology is reported through the CDM program.
Cybersecurity
CDM policies provide a vital shield against climate-driven cyberattacks, experts say
Cybercriminals are increasingly leveraging extreme weather events to launch attacks on critical infrastructure sectors.
Ideas
The future of CDM is in data governance, proactive threat detection
COMMENTARY: The Continuous Diagnostics and Mitigation program has helped to greatly fill in cyber gaps for agencies, but there is always more work to be done.
Cybersecurity
'Evolving' CISA program helped agencies quickly respond to recent cyber incidents
CISA’s Continuous Diagnostics and Mitigation program uses close collaboration with federal agencies to identify and respond to cyber threats, including last month’s MOVEit breach.
Cybersecurity
CDM team helped define cyber directives
Governmentwide cyber hygiene orders are increasingly taking into account the capabilities of Continuous Diagnostics and Mitigation tools.
Cybersecurity
CISA orders agencies to conduct weekly scans of networks and digital assets
The Cybersecurity and Infrastructure Security Agency is taking a major step towards increasing its visibility into the risks facing federal networks.
Cybersecurity
Agencies are sharing cyber data with CISA, officials say
The Cybersecurity and Infrastructure Security Agency is rapidly expanding its visibility into federal networks under the Biden administration's cybersecurity executive order.
Cybersecurity
White House embeds cyber EO in FISMA reporting
Federal agencies will be reporting on zero-trust adoption and automation efforts in their annual cybersecurity reports to the Office of Management and Budget.
Cybersecurity
White House looks to step up endpoint monitoring
The Biden administration is requiring agencies to provide visibility into their endpoint detection and response efforts as part of the cybersecurity executive order.
Acquisition
DHS faces setbacks implementing CDM, watchdog says
The Department of Homeland Security has failed to address critical vulnerabilities across information technology assets due to significant delays in the department's rollout of a federal Continuous Diagnostics and Mitigation program.
Cybersecurity
Senators press for federal agency accountability over SolarWinds
Three top cybersecurity officials struggled to answer questions from lawmakers about who is to blame for the government's failure to stop the breach of nine federal agencies.
Cybersecurity
SolarWinds hack blights the Trump administration's cybersecurity record
The consequences of the SolarWinds Orion hack are far from clear, but analysts and lawmakers say that officials at CISA and NSA made notable strides to improve the government's cybersecurity posture.
Cybersecurity
Evanina: Number of known SolarWinds victims 'will continue to grow'
A top counterintelligence official today said the number of known federal agencies affected by the SolarWinds hack will likely to continue to rise beyond initial estimates.
Cybersecurity
Upgraded CDM dashboard to roll out through FY2021
DHS officials say four federal agencies are now using an upgraded Continuous Diagnostics and Mitigation dashboard and they plan to continue implementing the platform elsewhere throughout the fiscal year.
Cybersecurity
CISA orders agencies to patch dire Window flaw
The Cybersecurity and Infrastructure Security Agency alerted federal agencies of an authentication flaw in Microsoft server software in need of an immediate fix.
Acquisition
NASA doesn't know what's on its network
According to an oversight report, the space agency can't provide an accurate count of the number of contractor-owned devices connected to its networks.
Cybersecurity
CISA updates internet connection policies
Many of the changes to the core Trusted Internet Connection policies were in response to public feedback seeking new tech and additional architectural and security concepts.
Cybersecurity
Best practices for agency implementation of CDM
A seasoned practitioner has some advice on how agencies can optimize their implementations of CDM tools, policies and processes.
Cybersecurity
CISA touts CDM, CyberStat as key cyber compliance tools
A watchdog report found DHS doesn't always validate whether agencies are complying with mandatory directives. The department floated plans to leverage two existing program to do just that.
Almost There!
Help us tailor content specifically for you: