Government Shutdown: Experts Fear Deep Cybersecurity Impact

Data Breach Today

government shutdown is impacting agencies integral to the nation's cybersecurity readiness, and experts fear its long-term impact on the country's cyberattack response capabilities, as well as the risk that it will drive away desperately needed new cybersecurity talent from entering public service

Government Agencies Field More Cybersecurity Maturity Models

Data Breach Today

The Pentagon and the Department of Energy are pitching new or revised cybersecurity capability maturity models to help their sectors prioritize cybersecurity investments and refine processes and controls. But should they defer to the NIST Cybersecurity Framework instead

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Government Shutdown Hampers Cybersecurity

Adam Levin

Government has impacted federal cybersecurity according to several reports. 80% of the National Protection and Programs Directorate , which oversees the Office of Cyber and Infrastructure Analysis and the Office of Cybersecurity and Communications.

Government Spending on Cybersecurity: An Analysis

Data Breach Today

Around the world, many CIOs at various levels of governments expect an increase in cybersecurity spending in 2019, according to new research from Gartner. Alia Mendonsa, co-author of the report, analyzes the results of a global survey

Data Governance: How to Tackle Three Key Issues

Data Breach Today

The Importance of Accountability, Data Inventory and Automation As organizations plot their 2020 cybersecurity strategies, especially in light of privacy regulations, key data governance challenges are emerging.

Enhancing Security Governance

Data Breach Today

Longtime CISO Vito Sardanopoli on Building an Effective Security Program A formal security program that spells out precise governance components is critical to protecting sensitive data, says Vito Sardanopoli, who served on the U.S.

GAO: Census Bureau Comes Up Short on Cybersecurity

Data Breach Today

Census Bureau has not done enough to address cybersecurity issues in preparation for the 2020 census, which is slated to begin April, according to a new report from the Government Accountability Office With 2020 Census Slate to Start April 1, Bureau Still Has Work to Do The U.S.

Cybersecurity Resources for Texas Local Governments

The Texas Record

On Friday, August 16, over twenty local government entities in Texas were targeted by a coordinated ransomware attack. This incident is the most recent in a year marked by cyberattacks on state and local governments across the country. August 20, 2019 – Update on August 2019 Texas Cyber Incident August 17, 2019 – Update on August 2019 Texas Cyber Incident August 16, 2019 – Ransomware Attack Hits Texas Government Entities. Cybersecurity Best Practices.

Cybersecurity Pioneers: Discovering Government's Threat Hunters

Data Breach Today

Welcoming the USA Government to Have I Been Pwned

Troy Hunt

Over the last 2 years I've been gradually welcoming various governments from around the world onto Have I Been Pwned (HIBP) so that they can have full and unfettered access to the list of email addresses on their domains impacted by data breaches. Today, I'm very happy to announce the expansion of this initiative to include the USA government by way of their US Cybersecurity and Infrastructure Security Agency (CISA). Have I Been Pwned Government

On Cybersecurity Insurance

Schneier on Security

Good paper on cybersecurity insurance: both the history and the promise for the future. Cyber insurance appears to be a weak form of governance at present. The private governance role of cyber insurance is limited by market dynamics.

Congress Considers IoT Cybersecurity Legislation - Again

Data Breach Today

Third Attempt at Setting Minimum Standards for Devices Government Uses The U.S.

IoT 222

GAO Blasts Cybersecurity Efforts of Federal Agencies

Data Breach Today

Watchdog Points to Numerous Risk Management Shortcomings Some 23 federal agencies come up short in their cybersecurity efforts even as attacks on their IT infrastructures continue to grow and concerns about foreign interference in the upcoming 2020 elections persist, according to a Government Accountability Office report.

FEC: Campaigns Can Use Discounted Cybersecurity Services

Krebs on Security

Federal Election Commission (FEC) said today political campaigns can accept discounted cybersecurity services from companies without running afoul of existing campaign finance laws, provided those companies already do the same for other non-political entities. The U.S.

Wanted: Cybersecurity Imagery

Schneier on Security

Eli Sugarman of the Hewlettt Foundation laments about the sorry state of cybersecurity imagery: The state of cybersecurity imagery is, in a word, abysmal. You can help: participate in the Cybersecurity Visuals Challenge. cybersecurity securityeducation securityengineering

Teaching Cybersecurity Policy

Schneier on Security

Peter Swire proposes a a pedagogic framework for teaching cybersecurity policy. Specifically, he makes real the old joke about adding levels to the OSI networking stack: an organizational layer, a government layer, and an international layer. cybersecurity networksecurity

NSA Launches New Cybersecurity Directorate

Security Affairs

NSA is redefining its cybersecurity mission and with the Cybersecurity Directorate it will enhance its partnerships with unclassified collaboration and information sharing. ” The State of Cybersecurity. What the NSA’s Directorate Means for Cybersecurity.

Cybersecurity Governance Lessons from Nuclear Power

IG Guru

By Cindy Satterfield In the nuclear power industry, a cybersecurity incident or error could be a life or death issue on a mass scale. The post Cybersecurity Governance Lessons from Nuclear Power appeared first on IG GURU.

Cybersecurity or Information Governance Failure???

Getting Information Done

This past weekend the world was overwhelmed by the cyberattack that spread around the globe hitting businesses, hospitals, and government agencies in over 150 countries. Was it a failure of Cybersecurity professionals?

Bill Would Create State Cybersecurity Leader Positions

Data Breach Today

senators has introduced legislation that would require the Department of Homeland Security to appoint cybersecurity leaders in each state to help combat growing cyberthreats against units of local government DHS Would Fund Coordinators for Every State A bipartisan group of U.S.

Trump Order Aims to Boost Federal Cybersecurity Workforce

Data Breach Today

Executive Order Creates a 'Cybersecurity Competition' to Offer Rewards President Donald Trump on Thursday signed an executive order that offers a mix of incentives and new guidelines aimed at hiring and retaining more security pros to work within the federal government.

Kazakhstan Government Intercepting All Secured Internet Traffic

Adam Levin

The Kazakhstan government is intercepting all HTTPS-encrypted internet traffic within its borders. Once installed, this certificate allows the government to decrypt and analyze all incoming internet traffic. . Data Security Government Cybersecurity Technology featured kazakhstan https

Microsoft President: Governments Must Cooperate on Cybersecurity

Dark Reading

Microsoft's Brad Smith calls on nations and businesses to work toward "digital peace" and acknowledge the effects of cybercrime

The Bleak State of Federal Government Cybersecurity

WIRED Threat Level

Nearly three out of four federal agencies is unprepared for a cyberattack, and there's no system in place to fix it. Security

Data Governance Makes Data Security Less Scary

erwin

The Regulatory Rationale for Integrating Data Management & Data Governance. Now, as Cybersecurity Awareness Month comes to a close – and ghosts and goblins roam the streets – we thought it a good time to resurrect some guidance on how data governance can make data security less scary.

Japanese government’s cybersecurity strategy chief has never used a computer

Security Affairs

The Japanese government’s cybersecurity strategy chief Yoshitaka Sakurada is in the middle of a heated debate due to his admission about his cyber capability. Yoshitaka Sakurada admitting he has never used a computer in his professional life, despite the Japanese Government, assigned to the politician the responsibility for cybersecurity of the 2020 Tokyo Olympics. “It’s a matter that should be dealt with by the government as a whole.

US Government Cybersecurity at a Crossroads

Dark Reading

Trump reportedly kills cybersecurity coordinator position, while meantime many agencies continue to play catch-up in their defenses

Nine 2019 Cybersecurity Predictions

Security Affairs

Wondering about the state of global cybersecurity in 2019? Wonder no more with these nine cybersecurity predictions for where the new year will take us — and what it means for our digital properties, online lives and livelihoods.

NSA Announces New Cybersecurity Directorate

Adam Levin

National Security Agency announced the formation of a new Cybersecurity Directorate earlier this week. The establishment of the directorate is part of a wider move on the part of the Federal Government to bolster the effectiveness of its cybersecurity, both defensively and offensively. .

A COVID-19 Cybersecurity Poll: Securing a Remote Workforce

Threatpost

Cloud Security Critical Infrastructure Government Malware Mobile Security Vulnerabilities Web Security best practices Businesses coronavirus COVID-19 Cybersecurity ransomware remote working schools telecommuting work from homeCOVID-19 is changing how we work.

What the Government Shutdown Teaches Us about Cybersecurity

Dark Reading

As lawmakers face a Friday deadline to prevent the federal government from closing a second time, we examine the cost to the digital domain, both public and private

5 Reasons Why Information Governance and Cybersecurity Go Hand in Hand

InfoGoTo

Those who know and manage the data working closely with those who strive to protect it – information governance and IT functioning in tandem. However, it’s vital to foster the partnership between IG and cybersecurity. It’s a logical partnership.

Texas Government Agencies Hit by Ransomware

Adam Levin

The local governments and agencies from twenty-three Texas towns were hit by a coordinated ransomware campaign last week. . local governments have increasingly been targeted by ransomware campaigns, including Baltimore, Atlanta and several Florida cities.

Vietnam's 'Cybersecurity' Law Says Little on Security

Data Breach Today

Law Focuses More on Fighting Anti-Government Speech On Wednesday, just days after a new "cybersecurity" law took effect, Vietnam alleged that Facebook has violated the law by allowing users to post anti-government comments on the platform. The so-called cybersecurity law actually speaks little about IT security measures

The Importance of Protecting Cybersecurity Whistleblowers

Schneier on Security

Interesting essay arguing that we need better legislation to protect cybersecurity whistleblowers. Congress should act to protect cybersecurity whistleblowers because information security has never been so important, or so challenging.

US Conflict With Iran Sparks Cybersecurity Concerns

Data Breach Today

drone strike in Baghdad late Thursday night, security experts and the Department of Homeland Security warned of possible retaliatory cyber strikes from Iran that could target critical infrastructure, government agencies as well as private businesses

Cybersecurity for the Public Interest

Schneier on Security

We need policymakers who understand technology, but we also need cybersecurity technologists who understand -- ­and are involved in -- ­policy. When you broaden the definition of Internet security, many additional areas fall within the intersection of cybersecurity and policy.

Cybersecurity for the Public Interest

Schneier on Security

We need policymakers who understand technology, but we also need cybersecurity technologists who understand­ -- and are involved in -- ­policy. When you broaden the definition of Internet security, many additional areas fall within the intersection of cybersecurity and policy.

How AI is slowly changing data governance

Information Management Resources

The search for better data governance — including data mobility, data accuracy, compliance, cybersecurity and privacy — has led to the application of AI in new processes and a suite of new data handling tools. Artificial intelligence Data management Data governance

Government Perspective on Supply Chain Security

Schneier on Security

cybersecurity infrastructure internetofthings nationalsecuritypolicy nsaThis is an interesting interview with a former NSA employee about supply chain security. I consider this to be an insurmountable problem right now.