Whether you’re a stickler for standards or not, the U.S. federal cloud computing market is better off because of them. Thanks to the Federal Risk and Authorization Management Program (FedRAMP), there are now baseline requirements for securing cloud products and services in use governmentwide. But the work doesn’t end after an agency finds a FedRAMP-compliant vendor.Read… Read more »
At Tuesday’s GovLoop event, “Evolving Tactics to Combat the Cyber Threat,” govies kicked off the day by focusing on a critical strategy to better tackle cyber threats: interagency collaboration. Michael Garcia is the Acting Director of the National Strategy for Trusted Identities in Cyberspace (NSTIC) at the National Institute for Standards and Technology (NIST) underRead… Read more »
Does anyone else love the TV show The Big Bang Theory? Anyone else feel smarter by the end of an episode? And yet, when you sit down and put some real thought into it you find yourself asking what do the main male characters in the show (except for Howard) actually do. And does theRead… Read more »
There are many benefits to the NIST Cybersecurity Framework. Through being neutral, broadly applicable, vetted by industry, and engaging to stakeholders, the Framework can reduce time and expense of starting an information security program and also reduce risk within current programs by identifying areas for improvement.
Yesterday, my colleague Emily and I took a field trip to Gaithersburg, MD to visit the National Institute of Standards and Technology (NIST). The agency, along with US Ignite, hosted the Global City Team Challenge Tech Jam which partners government leaders with innovators tackling civic problems with cyber-physical systems (CPS). CPS are physical objects–anything from parking metersRead… Read more »
If you were feeling a little unsettled about possibly missing a list of “all-things cybersecurity products” offered on GovLoop’s “From Framework to Action: Understanding the NIST Cybersecurity Framework” online training yesterday, I’m here to tell you that it may be time for your security posture check-up. “The idea of security being a certification or aRead… Read more »
Telos and ICS have partnered to help migrate the Department of Homeland Security’s data into a Telos-built information assurance management system. DHS’ Office of the Chief Information Officer has deployed Telos’ Xacta IA Manager into systems and agency components and automated the National Institute of Science and Technology’s risk management framework using that platform, TelosRead… Read more »
The White House and the National Institute of Standards and Technology are collecting feedback on a preliminary set of cybersecurity standards for the private sector. This voluntary framework seeks to provide commercial and government organizations a common language to share cyber risk management strategies, according to a White House blog post published Tuesday by NISTRead… Read more »
The National Institute of Standards and Technology will allocate $7.4 million for research initiatives to evaluate technologies used in emerging product development processes, Green Car Congress reported Thursday. Ohio-based National Additive Manufacturing Innovation Institute and Northern Illinois University will receive $5 million and $2.4 million, respectively, for additive manufacturing projects. NAMII, which operates under theRead… Read more »
Whether dealing with highly classified intelligence data or managing bring your own device (BYOD) policies, security has been one of the biggest hurdles to a mobile government. NIST recently issued its draft recommendation for securing mobile devices for government agencies, which include: Enforcing Security Policies Data Communication and Storage User and Device Authentication Solutions RestrictingRead… Read more »