Government Shutdown: Experts Fear Deep Cybersecurity Impact

Data Breach Today

government shutdown is impacting agencies integral to the nation's cybersecurity readiness, and experts fear its long-term impact on the country's cyberattack response capabilities, as well as the risk that it will drive away desperately needed new cybersecurity talent from entering public service

Government Agencies Field More Cybersecurity Maturity Models

Data Breach Today

The Pentagon and the Department of Energy are pitching new or revised cybersecurity capability maturity models to help their sectors prioritize cybersecurity investments and refine processes and controls. But should they defer to the NIST Cybersecurity Framework instead

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Government Shutdown Hampers Cybersecurity

Adam Levin

Government has impacted federal cybersecurity according to several reports. 80% of the National Protection and Programs Directorate , which oversees the Office of Cyber and Infrastructure Analysis and the Office of Cybersecurity and Communications.

Local, State Governments Face Cybersecurity Crisis

Dark Reading

Ransomware hit small government organizations hard in 2019. Now they have to deal with budget cuts, pandemic precautions, social unrest, and the coming election cycle

Government Spending on Cybersecurity: An Analysis

Data Breach Today

Around the world, many CIOs at various levels of governments expect an increase in cybersecurity spending in 2019, according to new research from Gartner. Alia Mendonsa, co-author of the report, analyzes the results of a global survey

Data Governance: How to Tackle Three Key Issues

Data Breach Today

The Importance of Accountability, Data Inventory and Automation As organizations plot their 2020 cybersecurity strategies, especially in light of privacy regulations, key data governance challenges are emerging.

Australia to Update National Cybersecurity Strategy

Data Breach Today

Government Invites Feedback on Addressing Cyber Challenges The Australian government is looking to update its national cybersecurity strategy by 2020.

The Cybersecurity Follies: Zoom Edition

Data Breach Today

British Government and Other 'Work-From-Homers' Grapple With Remote Communications The stuck-at-home chronicles have fast become surreal, as remote workers face down a killer virus on the one hand and the flattening of their work and personal lives on the other.

BEST PRACTICES: Why pursuing sound ‘data governance’ can be a cybersecurity multiplier

The Last Watchdog

Related: What we’ve learned from the massive breach of Capitol At RSA 2020 , I learned about how one of the routine daily chores all large organizations perform — data governance — has started to emerge as something of a cybersecurity multiplier. And by doing this housekeeping – i.e. by improving their data governance practices — companies can reap higher efficiencies, while also tightening data security.

Coronavirus: UK Government Promises App for Contact Tracing

Data Breach Today

But Cybersecurity Adviser Dismisses Plans as Misplaced 'Do-Something-Itis' The U.K. government says it's prepping a contact-tracing app in an attempt to help contain COVID-19.

Cybersecurity Pioneers: Discovering Government's Threat Hunters

Data Breach Today

Cybersecurity Resources for Texas Local Governments

The Texas Record

On Friday, August 16, over twenty local government entities in Texas were targeted by a coordinated ransomware attack. This incident is the most recent in a year marked by cyberattacks on state and local governments across the country. August 20, 2019 – Update on August 2019 Texas Cyber Incident August 17, 2019 – Update on August 2019 Texas Cyber Incident August 16, 2019 – Ransomware Attack Hits Texas Government Entities. Cybersecurity Best Practices.

GAO: Census Bureau Comes Up Short on Cybersecurity

Data Breach Today

Census Bureau has not done enough to address cybersecurity issues in preparation for the 2020 census, which is slated to begin April, according to a new report from the Government Accountability Office With 2020 Census Slate to Start April 1, Bureau Still Has Work to Do The U.S.

Congress Considers IoT Cybersecurity Legislation - Again

Data Breach Today

Third Attempt at Setting Minimum Standards for Devices Government Uses The U.S.

IoT 222

Cybersecurity or Information Governance Failure???

Getting Information Done

This past weekend the world was overwhelmed by the cyberattack that spread around the globe hitting businesses, hospitals, and government agencies in over 150 countries. Was it a failure of Cybersecurity professionals?

GAO Blasts Cybersecurity Efforts of Federal Agencies

Data Breach Today

Watchdog Points to Numerous Risk Management Shortcomings Some 23 federal agencies come up short in their cybersecurity efforts even as attacks on their IT infrastructures continue to grow and concerns about foreign interference in the upcoming 2020 elections persist, according to a Government Accountability Office report.

Cybersecurity Governance Lessons from Nuclear Power

IG Guru

By Cindy Satterfield In the nuclear power industry, a cybersecurity incident or error could be a life or death issue on a mass scale. The post Cybersecurity Governance Lessons from Nuclear Power appeared first on IG GURU.

On Cybersecurity Insurance

Schneier on Security

Good paper on cybersecurity insurance: both the history and the promise for the future. Cyber insurance appears to be a weak form of governance at present. The private governance role of cyber insurance is limited by market dynamics.

Teaching Cybersecurity Policy

Schneier on Security

Peter Swire proposes a a pedagogic framework for teaching cybersecurity policy. Specifically, he makes real the old joke about adding levels to the OSI networking stack: an organizational layer, a government layer, and an international layer. cybersecurity networksecurity

NSA Launches New Cybersecurity Directorate

Security Affairs

NSA is redefining its cybersecurity mission and with the Cybersecurity Directorate it will enhance its partnerships with unclassified collaboration and information sharing. ” The State of Cybersecurity. What the NSA’s Directorate Means for Cybersecurity.

2020 Cybersecurity Threat Trends Outlook via Booz | Allen | Hamilton

IG Guru

The post 2020 Cybersecurity Threat Trends Outlook via Booz | Allen | Hamilton appeared first on IG GURU. Check out their report that includes “Nine ways threat actors will make waves in 2020” here.

Bill Would Create State Cybersecurity Leader Positions

Data Breach Today

senators has introduced legislation that would require the Department of Homeland Security to appoint cybersecurity leaders in each state to help combat growing cyberthreats against units of local government DHS Would Fund Coordinators for Every State A bipartisan group of U.S.

Wanted: Cybersecurity Imagery

Schneier on Security

Eli Sugarman of the Hewlettt Foundation laments about the sorry state of cybersecurity imagery: The state of cybersecurity imagery is, in a word, abysmal. You can help: participate in the Cybersecurity Visuals Challenge. cybersecurity securityeducation securityengineering

Kazakhstan Government Intercepting All Secured Internet Traffic

Adam Levin

The Kazakhstan government is intercepting all HTTPS-encrypted internet traffic within its borders. Once installed, this certificate allows the government to decrypt and analyze all incoming internet traffic. . Data Security Government Cybersecurity Technology featured kazakhstan https

Japanese government’s cybersecurity strategy chief has never used a computer

Security Affairs

The Japanese government’s cybersecurity strategy chief Yoshitaka Sakurada is in the middle of a heated debate due to his admission about his cyber capability. Yoshitaka Sakurada admitting he has never used a computer in his professional life, despite the Japanese Government, assigned to the politician the responsibility for cybersecurity of the 2020 Tokyo Olympics. “It’s a matter that should be dealt with by the government as a whole.

NSA Announces New Cybersecurity Directorate

Adam Levin

National Security Agency announced the formation of a new Cybersecurity Directorate earlier this week. The establishment of the directorate is part of a wider move on the part of the Federal Government to bolster the effectiveness of its cybersecurity, both defensively and offensively. .

Nine 2019 Cybersecurity Predictions

Security Affairs

Wondering about the state of global cybersecurity in 2019? Wonder no more with these nine cybersecurity predictions for where the new year will take us — and what it means for our digital properties, online lives and livelihoods.

5 Reasons Why Information Governance and Cybersecurity Go Hand in Hand

InfoGoTo

Those who know and manage the data working closely with those who strive to protect it – information governance and IT functioning in tandem. However, it’s vital to foster the partnership between IG and cybersecurity. It’s a logical partnership.

Free Webinar: Information Governance (IG) and Certifications: A Practical Overview

IG Guru

The post Free Webinar: Information Governance (IG) and Certifications: A Practical Overview appeared first on IG GURU. Register for this webinar here.

Texas Government Agencies Hit by Ransomware

Adam Levin

The local governments and agencies from twenty-three Texas towns were hit by a coordinated ransomware campaign last week. . local governments have increasingly been targeted by ransomware campaigns, including Baltimore, Atlanta and several Florida cities.

Vietnam's 'Cybersecurity' Law Says Little on Security

Data Breach Today

Law Focuses More on Fighting Anti-Government Speech On Wednesday, just days after a new "cybersecurity" law took effect, Vietnam alleged that Facebook has violated the law by allowing users to post anti-government comments on the platform. The so-called cybersecurity law actually speaks little about IT security measures

Microsoft President: Governments Must Cooperate on Cybersecurity

Dark Reading

Microsoft's Brad Smith calls on nations and businesses to work toward "digital peace" and acknowledge the effects of cybercrime

The Bleak State of Federal Government Cybersecurity

WIRED Threat Level

Nearly three out of four federal agencies is unprepared for a cyberattack, and there's no system in place to fix it. Security

A COVID-19 Cybersecurity Poll: Securing a Remote Workforce

Threatpost

Cloud Security Critical Infrastructure Government Malware Mobile Security Vulnerabilities Web Security best practices Businesses coronavirus COVID-19 Cybersecurity ransomware remote working schools telecommuting work from homeCOVID-19 is changing how we work.

FEC: Campaigns Can Use Discounted Cybersecurity Services

Krebs on Security

Federal Election Commission (FEC) said today political campaigns can accept discounted cybersecurity services from companies without running afoul of existing campaign finance laws, provided those companies already do the same for other non-political entities. The U.S.

What the Government Shutdown Teaches Us about Cybersecurity

Dark Reading

As lawmakers face a Friday deadline to prevent the federal government from closing a second time, we examine the cost to the digital domain, both public and private

The Importance of Protecting Cybersecurity Whistleblowers

Schneier on Security

Interesting essay arguing that we need better legislation to protect cybersecurity whistleblowers. Congress should act to protect cybersecurity whistleblowers because information security has never been so important, or so challenging.

Data Governance Makes Data Security Less Scary

erwin

The Regulatory Rationale for Integrating Data Management & Data Governance. Now, as Cybersecurity Awareness Month comes to a close – and ghosts and goblins roam the streets – we thought it a good time to resurrect some guidance on how data governance can make data security less scary.

Why Cybersecurity Pros Should Care About Governance

Getting Information Done

Cybersecurity is a strategic priority for most organizations. We’ve all heard for years that information technology (IT) and cybersecurity require people, process, and technology; however, over the years, “people” and “process” have not received the same attention as “technology.”

Cybersecurity for the Public Interest

Schneier on Security

We need policymakers who understand technology, but we also need cybersecurity technologists who understand­ -- and are involved in -- ­policy. When you broaden the definition of Internet security, many additional areas fall within the intersection of cybersecurity and policy.