A new report out today from the Center for Strategic and International Studies (CSIS) focuses on the Cybersecurity Infrastructure Security Agency’s (CISA) growth and mission needs, and offers a range of findings and recommendations that go beyond basic funding needs to bolster CISA’s ability to defend the nation’s cyberspace and the security of Federal Civilian Executive Branch agencies (FCEB). […]

The top Republican on the House Homeland Security Cybersecurity and Infrastructure Protection Subcommittee – the congressional arm that maintains oversight of the Department of Homeland Security’s (DHS) Cybersecurity and Infrastructure Security Agency (CISA) – said today that an insufficient workforce remains the top cyber threat to our nation.   […]

Many Federal agencies are looking to use AI as a key cybersecurity tool, but before agencies get too far ahead of themselves, U.S. Air Force Deputy Chief Information Officer (DCIO) Winston Beauchamp said on Tuesday that the number one thing agencies can do to improve their cybersecurity posture is to modernize their IT architecture. […]

Federal Chief Information and Security Officer (CISO) Chris DeRusha said today that as the Federal government is making real progress on cybersecurity, his “cup is actually half empty” when it comes to the security of AI. […]

The Cybersecurity and Infrastructure Security Agency (CISA) and 17 international partners rolled out the first new batch of updates to its “secure-by-design” guidance document Monday. […]

The Environmental Protection Agency (EPA) withdrew its memo this week that required states to include cybersecurity audits of U.S. water utilities through sanitary surveys. […]

Retired U.S. Army Col. Candice Frost has joined Raytheon as the company’s director of Integrated Department of Defense Account Cybersecurity, Intelligence and Services. […]

The Executive Director of the Cybersecurity and Infrastructure Security Agency (CISA) said today that the threat posed by China within the cyber realm is evolving and much more serious today than it was a decade ago ­– particularly when it comes to potentially targeting the United States’ critical infrastructure. […]

A new paper issued this week by trade group BSA | The Software Alliance is urging policymakers to promote the use of AI as a tool to improve cybersecurity and counter malicious cyber actors. […]

Top executives with private sector cybersecurity technology providers are echoing one of the broader themes of October’s 20th annual Cybersecurity Awareness Month: spurring the entire IT ecosystem – from the biggest providers to all levels of consumers – to make the basics of cyber hygiene routine behavior. […]

Many Federal government agencies are having a difficult time filling cybersecurity roles with skilled personnel, but going forward, the FBI is placing an emphasis on building a diverse workforce to support its mission. […]

The Cybersecurity and Infrastructure Security Agency (CISA) published new guidance today to improve security and risk management of open source software (OSS) use at operational technology (OT) vendors and critical infrastructure facilities. […]

A newly released advisory from the Cybersecurity and Infrastructure Security Agency (CISA), in partnership with the National Security Agency (NSA), highlights the most common cybersecurity misconfigurations in large organizations.  […]

The Department of Treasury plans to launch a blanket purchase agreement (BPA) contract to source and streamline cybersecurity services across the agency. […]

The Transportation Security Administration (TSA) is finalizing permanent cybersecurity rules for critical pipeline operators.  […]

The Advanced Research Projects Agency for Health (ARPA-H) is investing millions into projects that make advancements in technologies that protect the security of health data, the agency announced last week.  […]

As the Federal government approaches the near certainty of a shutdown late Saturday, agencies began issuing their respective contingency plans to their workforce – indicating which employees and services are deemed essential and which will be furloughed. […]

A new report from the Government Accountability Office (GAO) finds that Federal agencies and critical infrastructure owners must do a better job at sharing information to tackle increasingly complex cyber threats. […]

The Department of Homeland Security (DHS) – the Cybersecurity and Infrastructure Security Agency’s (CISA) parent agency – said yesterday that only 571 of CISA’s 3,117 employees would continue to work through a government shutdown – meaning that 79 percent of the agency’s staff would be staying home until government funding is restored. […]

Tech leaders from six prominent government agencies offered suggestions Tuesday for how they want to see the FITARA Scorecard categories improve, particularly when it comes to cybersecurity metrics. […]

The number two official at the Justice Department (DoJ) warned today that the pending government shutdown is “quite dangerous and quite irresponsible” in terms of the effect it would have on the nation’s ability to defend against cyber threats. […]

Today, the Cybersecurity and Infrastructure Security Agency (CISA) released the new Hardware Bill of Materials (HBOM) Framework for Supply Chain Risk Management product from the Information and Communications Technology (ICT) Supply Chain Risk Management (SCRM) Task Force.   […]

While the news bread is still not quite baked on this one, check us out next week for all the details on new research from MeriTalk and Pluralsight that shows what Federal government cybersecurity leaders need to succeed in the ever changing cyber landscape. […]

The Council of the Inspectors General on Integrity and Efficiency (CIGIE) issued a summary today of the top challenges facing Federal agencies, as identified by those agencies’ respective Offices of the Inspector General (OIG) – and once again IT issues headed up the list. […]

Cybersecurity experts across the private sector expressed concerns today that a Federal government shutdown would have major negative impacts on the Cybersecurity and Infrastructure Security Agency’s (CISA) ability to defend Federal networks and keep its critical cyber programs running. […]

The Department of Homeland Security (DHS) warned last week that the United States should expect to see an uptick in use of artificial intelligence (AI) tools that will help to bolster adversary tactics over the next year. […]

The Defense Advanced Research Projects Agency (DARPA) has turned to artificial intelligence (AI) capabilities to bolster cybersecurity defenses against continued and growing threats, an agency official explained last week. […]

The Office of the National Cyber Director (ONCD) is creating a playbook that aims to clarify, facilitate, and encourage incorporation of cybersecurity into the Federal grant process. […]

The Cybersecurity and Infrastructure Security Agency’s (CISA) new Cyber Supply Chain Risk Management (C-SCRM) Office is in the process of developing training and maturity models for Federal agencies, with an eye of releasing these resources in the new fiscal year (FY) to begin on Oct. 1.   […]

While the Internal Revenue Service (IRS) has made strides in safeguarding taxpayer data, the Government Accountability Office (GAO) said in a new report that thousands of IRS contractors are not undergoing the same insider threat awareness training that agency staff engages in, and that this training deficit means that contractors are “at increased risk of being unprepared to handle taxpayer information.” […]