Defense Systems
The state of CMMC from an assessor perspective
The Cybersecurity Maturity Model Certification program is a step forward for DOD and its contractors to improve the nature and the operation of the DOD supply chain in today’s cybersecurity-focused world.
Defense Systems
State Department to get cyber bureau
The secretary of State named cybersecurity and emerging tech as critical areas for capacity building at State, alongside climate, global health and multilateral technology.
Defense Systems
New missions could present challenges for DODs cyber workforce
Mieke Eoyang, the deputy assistant secretary of defense for cyber policy said one of DOD's main cyber workforce challenges is being able to set expectations around policymakers' calls to step in and defend against cyberattacks.
Ideas
It’s Not About Submarines. It’s about Software
Important as AUKUS submarines are in the military balance, the new way of deterrence will be about the strength, speed, and resilience of software.
Defense Systems
DOD testing director nominee wants cyber assessments for commercial cloud systems
The Biden administration's pick to lead the Defense Department's operational testing, Nickolas Guertin, called the department's inability to conduct independent cyber assessments of commercial cloud systems "a severe limitation."
Defense Systems
CISA seeks 24-hour cyber incident reporting timeline
Two separate Senate bills set different deadlines for federal contractors, critical infrastructure providers and other covered companies to report cyber incidents to the federal government.
Science & Tech
Russian Corruption Makes It Harder to Crack Down on Ransomware
Hackers who learned skills in government service are branching out “for their own personal enrichment,” Pentagon cyber leader says.
Ideas
The US Should Have Invited Russia to Join Its Counter-Ransomware Initiative
The Biden administration recently hosted a ransomware summit which excluded the Russian government. The United States should have done more to involve Russia in ransomware negotiations.
Defense Systems
Water treatment facilities named in joint cyber advisory
To help water and wastewater utilities protect their IT and operational technology systems from cyberattack, the FBI, Cybersecurity and Infrastructure Agency, Environmental Protection Agency and National Security Agency have outlined steps facilities can to take steps to defend themselves.
Defense Systems
CISA releases final TIC 3.0 remote user use case
The guidance gives federal agencies instructions on applying network and multi-boundary security for remote users.
Science & Tech
AUSA Conference Wire: Connect Everything
New: a weapons-testing lab just for networking. Coming up: a wargame featuring a battalion of unmanned vehicles.
Defense Systems
CISA's new talent management system could boost cyber recruitment
Despite increasing competition among the public and private sectors in hiring top cyber talent, CISA Director Jen Easterly said she has high hopes for a new personnel management system which reduces friction in hiring and offers new career paths.
Defense Systems
DHS adds cyber requirements for transportation industry
The Transportation Security Agency and the Coast Guard are getting increased authority over industry cybersecurity.
Policy
NSA Cyber Chief Spells Out Near-Term Priorities
Ransomware is a top concern, but the agency is also looking ahead to defending networked weapons and post-quantum encryption.
Defense Systems
Tough conversations on ransomware ahead
The U.S. government, will have to start regularly having hard conversations "country to country" on state-sponsored cyberattacks, according to a top Defense Department official.
Defense Systems
Coast Guard embraces direct commissioning for cyber personnel
The maritime military branch opened up its direct commissioning program to cyber roles in cyberspace operations, cybersecurity, information assurance and cyber threat intelligence.
Defense Systems
CISA chief: Cyber incident reporting can't become a burden
Jen Easterly, the director of the Cybersecurity and Infrastructure Security Agency, stressed the importance of cyber incident reporting but said mandates should be careful of potentially overburdening companies -- and CISA -- with "reporting noise."
Defense Systems
How the Air Force is tackling electronic warfare challenges
The Air Force is on high alert when it comes to electromagnetic spectrum threats. But extensive system updates pose a risk.
Defense Systems
CISA chief floats fines to compel threat info sharing
Cybersecurity and Infrastructure Security Agency Director Jen Easterly told lawmakers that fines may help enable disclosure compliance and enforcement.
Defense Systems