Cybersecurity
New CISA guidance looks to guard against supply chain hacks
The Cybersecurity and Infrastructure Security Agency advocates constant communication and education as cyber threat mitigative measures.
Cybersecurity
New bill aims to address private sector cyber risks to FEMA operations
A proposed amendment to the Homeland Security Act would task FEMA and the Cybersecurity and Infrastructure Security Agency to work with private entities to ensure digital risks to agency operations are mitigated.
Cybersecurity
DHS cyber review board to examine China-linked cyberattacks of Microsoft
The Cyber Safety Review Board will assess how a hacking group reportedly linked to China leveraged a vulnerability in Microsoft Exchange Online to access government emails.
Cybersecurity
White House looks to shore up open source software security
The Office of the National Cyber Director wants software providers to "contribute back to the security of the open source software they depend upon."
Ideas
The future of CDM is in data governance, proactive threat detection
COMMENTARY: The Continuous Diagnostics and Mitigation program has helped to greatly fill in cyber gaps for agencies, but there is always more work to be done.
Cybersecurity
CISA unveils plan to measure cybersecurity success
The Cybersecurity and Infrastructure Security Agency's 2024-2026 cybersecurity roadmap focuses on public-private partnerships and using metrics to gauge the effectiveness of cybersecurity measures.
Cybersecurity
CISA, Five Eyes cyber advisory lists common vulnerabilities among 2022’s top exploits
Several federal and international agencies listed bugs detected across private networks, encouraging greater adherence to Secure By Design principles.
Cybersecurity
'Evolving' CISA program helped agencies quickly respond to recent cyber incidents
CISA’s Continuous Diagnostics and Mitigation program uses close collaboration with federal agencies to identify and respond to cyber threats, including last month’s MOVEit breach.
Cybersecurity
CISA is growing up, CIO says
CISA's Bob Costello talks top priorities, challenges and growing pains and progress for a CIO office in a relatively young federal agency.
Acquisition
CISA teases industry day for operational strategy support
The cybersecurity agency is planning to field a multiple award schedule contract for consultant services to help shape its operational strategy.
Digital Government
White House looks to shore up public trust in government websites
Federal agencies need to use 'memorable' and succinct domain names for government websites, per guidance issued on Wednesday.
Cybersecurity
Hackers used legit remote monitoring software to hack agency networks
Guidance from the National Security Agency and the Cybersecurity and Infrastructure Security Agency describe a phishing attack on a federal employee that used fake help desk domains to gain access to at least two federal civilian executive branch networks.
Cybersecurity
CDM team helped define cyber directives
Governmentwide cyber hygiene orders are increasingly taking into account the capabilities of Continuous Diagnostics and Mitigation tools.
Cybersecurity
CISA sets voluntary cyber performance targets for critical infrastructure
A new set of documents and resources from the agency is designed to help critical infrastructure operators manage the basics of cybersecurity.
Cybersecurity
CISA orders agencies to conduct weekly scans of networks and digital assets
The Cybersecurity and Infrastructure Security Agency is taking a major step towards increasing its visibility into the risks facing federal networks.
Cybersecurity
CISA launches DNS resolution shared service
The nation's cyber defense agency is launching a new shared service offering for all federal civilian agencies to bolster governmentwide cybersecurity and help thwart emerging internet traffic threats.
Cybersecurity
CISA's cyber info sharing program didn't always deliver, watchdog says
The Cybersecurity and Infrastructure Security Agency did not always provide more than 300 participants of a public-private cyber threat partnership with actionable information to address potential vulnerabilities, according to an oversight report.
Cybersecurity
Cyber Safety Review Board staffs up
The chair of the Cyber Safety Review Board has ambitious goals for the organization following its public review of the Log4j software vulnerability.
Cybersecurity
Former CISA chief wants a new, cross-cutting new agency to lead federal cyber
Chris Krebs wants to establish a new agency to focus on privacy, data and cyber risks facing the U.S., or to pull the Cybersecurity and Infrastructure Security Agency from under the Department of Homeland Security.
Cybersecurity
CISA’s first international office set to open later this month in London
CISA’s planned international attaché office will help promote the agency’s first-ever global strategy announced last year.
Almost There!
Help us tailor content specifically for you: