The Cybersecurity and Infrastructure Security Agency is looking to increase visibility across federal networks by expanding a “no-notice” penetration testing initiative known as Federal Attack Surface Testing. In the fiscal year 2021 defense budget, Congress authorized CISA to hunt cyberthreats on agency networks without prior approval, Federal News Network reported. Eric Goldstein, executive assistant director […]
The Cybersecurity and Infrastructure Security Agency and the Department of Health and Human Services have launched a new toolkit to help health care organizations protect their systems from cyber-enabled threats. The Cybersecurity Toolkit for Healthcare and Public Health consolidates several cybersecurity resources, including the CISA’s Cyber Hygiene Services and the HHS’s Health Industry Cybersecurity Practices […]
The Department of the Navy’s first principal cyber adviser, Chris Cleary, told DefenseScoop that his successor needs a longer term for more continuity in overseeing change, particularly on the civilian side of the service. Cleary’s three-year PCA tenure, which expires on Nov. 27, follows the 2020 Congress defense policy measure mandating the role’s creation to […]
U.S. Cyber Command will hold a cybersecurity event in the coming weeks to enhance its readiness to protect networks, data and critical infrastructure in support of the Joint Force commanders and interagency and international partners. The International Coordinated Cyber Security Activity will focus on defending the Department of Defense networks and systems from malware and […]
The workforce development nonprofit Cyber .org has secured $6.8 million from the Cybersecurity and Infrastructure Security Agency to support cyber career opportunities for elementary and high schoolers. Under the Cybersecurity Education and Training Assistance Program, the nonprofit will also encourage literacy and instruction initiatives to address a nationwide cyber workforce shortage, CISA said Monday. The […]
The National Security Agency has issued a new cybersecurity information sheet recommending ways to ensure that devices meet the security framework’s access criteria under the zero trust architecture. The CSI, titled Advancing Zero Trust Maturity Throughout the Device Pillar, guides federal agencies and their partner organizations in assessing their systems’ devices and equipping them with […]
The Defense Logistics Agency has awarded a J6 Enterprise Technology Services task order to SNR Government IT Services, a SkyePoint Decisions business, to provide cybersecurity assessment and authorization analyst support services. SNR GovIT personnel are experienced in assessing and validating security controls and ensuring compliance with policies and procedures, SkyePoint said Thursday. Tetra Tech subsidiary […]
The Cybersecurity and Infrastructure Security Agency has announced a feedback solicitation procedure as part of the agency’s efforts to update the National Cyber Incident Response Plan. According to CISA, the feedback solicitation period would inform the NCIRP 2024 planning effort, directed by the Biden administration’s 2023 National Security Strategy. The NCIRP 2024 is grounded on […]
The Cybersecurity and Infrastructure Security Agency has announced a feedback solicitation procedure as part of the agency’s efforts to update the National Cyber Incident Response Plan. According to CISA, the feedback solicitation period would inform the NCIRP 2024 planning effort, directed by the Biden administration’s 2023 National Security Strategy. The NCIRP 2024 is grounded on […]
The Cybersecurity and Infrastructure Security Agency, the National Security Agency, the Multi-State Information Sharing and Analysis Center and the FBI issued on Wednesday their jointly developed manual identifying malicious cyber tactics and countermeasures against hackers. The agencies’ work, titled “Phishing Guidance, Stopping the Attack Cycle at Phase One,” details two common hacker objectives: phishing for […]
