The Department of Energy has updated a guidance tool that allows power companies to assess their processes, methods and practices for securing operational and information technology assets. Version 2 of the Cybersecurity Capability Maturity Model seeks to help energy system operators determine how they fare in managing risks to cloud computing, artificial intelligence and other […] More
The program management office of the Federal Risk and Authorization Management Program has automated parts of the process through which agencies may reuse FedRAMP-approved cloud products, Fedscoop reported Tuesday. The program, which aims to standardize the security of cloud products used in the federal government, and the National Institute of Standards and Technology are using […] More
Google Cloud has unveiled a set of service offerings meant to help federal, state and local government agencies establish zero trust architecture in compliance with the new executive order on cybersecurity. The company said Tuesday its new service offerings are Zero Trust Assessment and Planning, Secure Application Access Anywhere and Active Cyber Threat Detection. The […] More
David Young, senior vice president of public sector and hyperscaler business at Lumen Technologies and a two-time Wash100 Award winner, said public sector agencies should take a holistic approach as they develop plans to comply with President Joe Biden’s executive order on cybersecurity and deliver secure digital experiences to employees and citizens. Young wrote in […] More
Matthew Travis, CEO of the Cybersecurity Maturity Model Certification Accreditation Body, said placing the first two third-party assessment organizations into the CMMC marketplace means the Defense Department-initiated program has begun moving through the gears after more than one year of planning and discussion among stakeholders. In a Government Matters interview posted Sunday, he noted that […] More
Sanjay Beri, CEO of Netskope, has talked about President Joe Biden’s Cybersecurity Executive Order and how the Santa Clara, California-based software company can assist the federal government in bolstering its information technology systems. Beri wrote in a July 2 commentary posted by MeriTalk that the EO highlights Biden’s commitment to improving agencies’ cybersecurity posture by […] More
The National Institute of Standards and Technology is seeking public comments on the second draft of its report on cybersecurity risk management in an enterprise setting. The Identifying and Estimating Cybersecurity Risk for Enterprise Risk Management document provides guidance in implementing CSRM to help organizations manage their enterprise risks amid an increasing number of cyber […] More
The Defense Innovation Unit has issued “success memos” to Zscaler, Google‘s cloud business and McAfee after the technology vendors met prototyping objectives of the agency’s Secure Cloud Management program. All three companies developed platforms that work to help DIU users secure access to software-as-a-service applications via the internet, the Department of Defense’s innovation arm said […] More
Carahsoft Technology has agreed to help NightDragon market the latter’s portfolio of cyber products across local, state and federal governments, as well as educational institutions. NightDragon invests in a portfolio of startup companies that provide cybersecurity, safety and privacy technologies, Carahsoft said Tuesday. Carahsoft will work to streamline contracting processes that grant public sector entities […] More
The Department of Defense has approved two new certifications submitted by an international nonprofit membership association for aspiring cloud and health care security personnel. (ISC)2 said Monday its HealthCare Information Security and Privacy Practitioner and Certified Cloud Security Professional accreditations are now included in the DoD 8570 Approved Baseline Certifications table. The HCISPP will be […] More
