A new congressional voice on cybersecurity issues is vowing to heighten oversight of the Cybersecurity and Infrastructure Security Agency (CISA) to help fight the growing threat of cyberattacks. […]

Almost two years ago, a ransomware attack on the Colonial Pipeline Company, a major supplier of fuel to the northeastern U.S., pushed the Transportation Security Administration (TSA) to develop directives for pipeline owners and operators to implement cybersecurity measures. […]

The Office of Management and Budget (OMB) said in its FY2022 FISMA Report that the Cybersecurity and Infrastructure Security Agency’s (CISA) Continuous Diagnostics and Mitigation (CDM) program counted 48 Federal agencies that were making notable progress on deployments of endpoint and detection response (EDR) technologies by the end of fiscal year 2022 that ended last Sept. 30. […]

A group of bipartisan senators has introduced legislation that would require the Cybersecurity and Infrastructure Security Agency (CISA) to help commercial satellite companies and owners to better defend themselves against cyberthreats across the globe. […]

The Cybersecurity and Infrastructure Security Agency (CISA) on April 27 released for public comment its proposed Secure Software Self-Attestation Common Form that will help to advance a key aspect of President Biden’s 2021 cybersecurity executive order on creating a more secure software supply chain. […]

Officials from the Department of Homeland Security’s (DHS) Cybersecurity and Infrastructure Security Agency (CISA) and the U.S. Cyber Command’s (USCYBERCOM) Cyber National Mission Force (CNMF) revealed this week that collaboration between their agencies was able to prevent two potentially dangerous cyberattacks, including the disruption of an Iranian effort to target election infrastructure. […]

If you’re heading to the RSA Conference in San Francisco in person, or even if you’re staying home in hopes of getting the latest cybersecurity intel from keynotes that will become available from the conference, here’s our curated run-down on what the MeriTalk newsroom is watching for news breakers. […]

The Cybersecurity and Infrastructure Security Agency (CISA) is seeking $425 million of fiscal year 2024 funding to put into motion a giant technology leap forward in how the agency analyzes the ever-growing volume of cybersecurity data that it needs to sift through to identify threats and vulnerabilities. […]

The Cybersecurity and Infrastructure Security Agency (CISA) today announced plans to develop and establish its own version of the Logging Made Easy (LME) tool – an open-source project that provides basic logging of security information on enrolled Windows devices.  […]

Ninety-five percent of Federal IT executives say their agencies are investing in in-house AI skills development – but in the past year, half of agencies had an AI project fail due to lack of in-house expertise, according to research from MeriTalk and Future Tech. […]

The Cybersecurity and Infrastructure Security Agency (CISA) has appointed Kathryn Coulter Mitchell as the agency’s chief of staff. […]

The Cybersecurity and Infrastructure Security Agency (CISA) published its secure-by-design and -default guidance today, which CISA Director Jen Easterly said is all about driving down cyber vulnerabilities to near zero. […]

The Cybersecurity and Infrastructure Security Agency (CISA) published its secure-by-design and secure-by-default guidelines today, which aim to outline clear steps that technology providers can take to increase the safety of products used around the world. […]

The Cybersecurity and Infrastructure Security Agency (CISA) will unveil its secure-by-design guiding principles tomorrow, CISA Director Jen Easterly said during the Crowdstrike Government Summit in Washington, D.C., this week. […]

The Cybersecurity and Infrastructure Security Agency (CISA) today published an updated, second version of its Zero Trust Maturity Model that is guiding Federal agencies and other organizations along the path to adopting zero trust security architectures. […]

Rep. Eric Swalwell, D-Calif., is planning to introduce legislation to clarify the role of the Cybersecurity and Infrastructure Security Agency’s (CISA) Joint Cyber Defense Collaborative (JCDC) program and criteria for membership in the group. […]

In a new report, the Government Accountability Office (GAO) is asking the Cybersecurity and Infrastructure Security Agency (CISA) to develop time frames on when it will complete its work in helping sector risk management agencies (SRMAs) to implement their fiscal year (FY) 2021 National Defense Authorization Act (NDAA) responsibilities. […]

The Cybersecurity and Infrastructure Security Agency (CISA) on March 21 released stakeholder-driven updates to the Cybersecurity Performance Goals (CPGs) for critical infrastructure entities and businesses that the agency issued last year. […]

The Cybersecurity and Infrastructure Security Agency (CISA) and the National Security Agency (NSA) released new guidance on March 21 that offers system administrators best practices for identity and access management (IAM). […]

The?Cybersecurity and Infrastructure Security Agency (CISA) said late Wednesday that it has accepted in whole or in part 29 recommendations put forth by its Cybersecurity Advisory Committee (CSAC), which was created to provide cybersecurity recommendations to CISA Director Jen Easterly. […]

Cybersecurity and Infrastructure Security Agency (CISA) Director Jen Easterly today announced the appointment of new members to the CISA Cybersecurity Advisory Committee (CSAC), who will help advise her on policies and initiatives to bolster the nation’s cybersecurity posture. The announcement comes just in time for the committee’s next meeting, which will be held virtually tomorrow, […]

The Cybersecurity and Infrastructure Security Agency (CISA) is expanding its Mobile App Vetting (MAV) beta service that allows the agency to help combat the use of “bad applications” that can expose cybersecurity flaws for agencies. […]

The Cybersecurity and Infrastructure Security Agency said on March 15 that multiple attackers were able to compromise a system at one unnamed Federal civilian executive branch agency from November 2022 to January 2023, and issued an advisory for other organizations to take action to mitigate any similar vulnerability. […]

The Cybersecurity and Infrastructure Security Agency (CISA) announced on Monday its new Ransomware Vulnerability Warning Pilot (RVWP) to warn critical infrastructure entities of vulnerabilities commonly associated with known ransomware exploitation. […]

The Cybersecurity and Infrastructure Security Agency (CISA) and Girl Scouts of the USA (GSUSA) announced they will collaborate to bring more women into the cybersecurity workforce to bridge the gender gap. […]

Rep. Mark Green, R-Tenn., chairman of the House Homeland Security Committee, today pledged that his committee will conduct tough oversight of the Cybersecurity and Infrastructure Security Agency (CISA) to ensure that the agency “responsibly” carries out its mission without branching into excessive regulation. […]

The Cybersecurity and Infrastructure Security Agency (CISA) is considering turning its current Trusted Internet Connections (TIC) program office into an office that supports Federal agencies as they pursue requirements from CISA and the Office of Management and Budget (OMB) to migrate to zero trust security architectures. […]

The Biden administration’s fiscal year (FY) 2024 budget request issued today by the White House features a proposed $200 million addition to the Technology Modernization Fund (TMF), and a 4.9 percent annual budget increase for the Cybersecurity and Infrastructure Security Agency (CISA). […]

As agencies begin work to implement the Biden administration’s brand new national cyber strategy, the chief information officer (CIO) of the Cybersecurity and Infrastructure Security Agency (CISA) said he’s most excited that the strategy calls on the Federal government to diversify the cybersecurity workforce. […]

The Cybersecurity and Infrastructure Security Agency (CISA) has launched a brand new website, making tools easier to find for users and incorporating the former US-CERT website. […]