/
Bipartisan House Bill Aims to Improve Cybersecurity on Healthcare Data
Published on
Bipartisan House Bill Aims to Improve Cybersecurity on Healthcare Data

Rep. Jason Crow, D-Colo., has teamed up with Reps. Brian Fitzpatrick, R-Penn., and Andy Kim, D-N.J. to file the Healthcare Cybersecurity Act, a bipartisan measure seeking to protect Americans’ healthcare information in the cyber domain. 

The proposed legislation follows a counterpart bipartisan Senate bill introduced by Sens. Jacky Rosen, D-Nev., Todd Young, R-Ind., and Angus King, I-Maine in July, Crow’s office said Wednesday.

The office noted that a recent ransomware attack on the Change Healthcare payment platform indicates the current lack of cybersecurity preparation and training in the healthcare sector, which had over 133 million patient records exposed to cyberattacks in 2023. 

The House bill calls for the collaboration of the Cybersecurity and Infrastructure Security Agency and the Department of Health and Human Services in cybersecurity improvements and mobilizing resources for non-federal agencies to identify cyber vulnerabilities and formulate defense steps. It seeks to create a special CISA liaison that will collaborate with HHS during cybersecurity cases.  

“I’m leading this effort to bolster cyber defenses and protect some of Americans’ most personal and sensitive information from malicious actors,” said Crow, who also spearheaded the bipartisan bill passed during the last Congress to strengthen the Small Business Administration’s cybersecurity operations.

/
Maximus Books $263M Pennsylvania DHS Contract for Application & Enrollment Services
Published on
Maximus Books $263M Pennsylvania DHS Contract for Application & Enrollment Services

Maximus has secured a potential five-year, $263 million contract from the Pennsylvania Department of Human Services to provide application and enrollment support services for eligible state residents.

The company said Wednesday it will assist people with disabilities and seniors as they go through the Medicaid waiver application process to facilitate their access to home and community-based services.

The vendor will provide applicants with choice counseling support for provider and plan selection, assist with the appeals and grievances processes and implement digital tools for residents and their authorized caregivers to help reduce wait times and streamline service delivery.

“Pennsylvania has allocated significant resources toward aging-in-place solutions and supporting individuals with disabilities to live independently in their communities. We are proud of our partnership with the state to deliver timely and person-centered application and enrollment assistance,” said Ferdinand Morales, senior managing director of health services at Maximus.

Since 2016, Maximus has been providing independent enrollment broker services for Pennsylvania residents.

POC - 2024 Healthcare Summit

Register here to join the Potomac Officers Club’s 2024 Healthcare Summit on Dec. 11 and explore the trends and innovations shaping the health care sector’s future.

/
CISA Awards Booz Allen $421M CDM DEFEND Task Order
Published on
CISA Awards Booz Allen $421M CDM DEFEND Task Order

The Cybersecurity Infrastructure Security Agency has awarded Booz Allen Hamilton a three-year, $421 million task order to extend its services under the agency’s Continuous Diagnostics and Mitigation, or CDM, DEFEND program.

Through the contract, Booz Allen is set to implement enhanced cybersecurity capabilities and incident support to advance zero-trust resilience throughout CISA, the McLean, Virginia-based company announced Thursday.

Kelly Rozumalski, senior vice president at Booz Allen and a leader in the firm’s national cyber defense business, said, “The threat environment is constantly evolving and growing more complex as the nation pivots to strategic competition.”

“Federal agencies must be able to respond quickly to emerging threats in a matter of minutes or seconds, not months or weeks, to mitigate risks to U.S. critical infrastructure and civilians,” Rozumalski stated.

Booz Allen will provide services in four areas—asset management, identity and access management, network security management and data protection management—and serve as an advisor to various agencies on adopting and maintaining a secure, zero trust posture.

Erica Banks, vice president at Booz Allen and leader of the firm’s CDM portfolio, said the company looks forward to continuing a partnership that has lasted since the inception of the CDM program in 2014.

“While we’ll continue to focus on sustaining operational visibility and implementing critical capabilities, this award also calls for us to reimagine how we can support CDM moving forward,” Banks emphasized. “We look forward to helping the nation’s agencies improve their own cybersecurity postures and help them perform critical data-enabled missions in service of millions of Americans every day.”

Booz Allen will provide cybersecurity tools to 13 government agencies throughout the CDM DEFEND contract, which has a ceiling of $1.2 billion.

/
NASA SBIR Ignite Phase II Picks 9 Companies to Move Forward
Published on
NASA SBIR Ignite Phase II Picks 9 Companies to Move Forward

NASA has awarded grants to nine small businesses through its 2023 NASA Small Business Innovation Research Ignite Phase II pilot program earlier this month.

The selected companies are tasked with developing technologies that can be used in future agency missions and the commercial space industry. If successful, the projects will be used in critical missions such as deep space exploration, low orbit missions and life preservation on Earth.

Some of the technologies being developed by the group of awardees are intended for wildfire detection, water management in agriculture, in-space debris detection, mineral mining from lunar regolith and in-space production. Each small business will receive up to $850,000 for their projects.

The SBIR Ignite Phase II awardees are as follows:

  • Astral Forge 
  • Astrobotic Technology
  • Benchmark Space Systems
  • Brayton Energy
  • Channel-Logistics
  • GeoVisual Analytics
  • Space Lab Technologies 
  • Space Tango
  • VerdeGo Aero

After being selected for Phase I of the 2023 SBIR Ignite program, the companies were given $150,000 and six months to work on their technologies.

Solicitation for the 2024 SBIR Ignite Phase I ended on July 30, 2024. Companies moving on to Phase II will be announced in Fall 2024.  The program is managed by NASA’s Ames Research Center in Silicon Valley.

//
DLA Aviation Transitions to New Warehouse Management System at Navy Sites
Published on
DLA Aviation Transitions to New Warehouse Management System at Navy Sites

The Defense Logistics Agency Aviation has started using the Warehouse Management System at Navy distribution centers in California, North Carolina and Florida.

Set to eventually replace the agency’s Distribution Standard System, WMS supports ongoing efforts to enhance inventory management, operational efficiency and warfighter support, DLA said on Wednesday.

According to Angela Johnson, order fulfillment division chief in DLA Aviation’s Business Process Support Directorate, the new system improved the visibility of inventory location, movement and delivery to the customer.

She added that WMS, which was based on System Applications and Products, reduces the time required to deliver requisitions and enhances overall operational performance.

Notably, DLA Aviation in San Diego, California credited WMS for improving its accuracy and warehouse space utilization, enabling the facility to meet increasing demands.

The same goes for DLA Aviation in Jacksonville, Florida, which reported that the system allowed requisitions to flow to the Fleet Readiness Center Southeast customer with minimal delay.

Overall, WMS cut down requisition backlogs and improved delivery times, according to DLA.

Following WMS’ deployments at select Navy sites, DLA Aviation will finalize the development of its local delivery processes and conduct interoperability system testing between DLA and the Air Force, the system’s next user.

Johnson said WMS will receive constant updates and enhancements to ensure improved warehouse management and operational efficiency.

//
CISA Issues Warning About Ransomware Threat From Iran-Based Cyber Actors
Published on
CISA Issues Warning About Ransomware Threat From Iran-Based Cyber Actors

The Cybersecurity and Infrastructure Security Agency has released an advisory detailing the tactics, techniques and procedures used by a group of cyber threat actors with connections to the government of Iran and an unnamed IT company from the same country.

The Iran-based cyber actors, known as Pioneer Kitten, UNC757, Parisite, Rubidium and Lemon Sandstorm, conduct operations with the aim of deploying ransomware to obtain and develop network access and facilitating collaboration with affiliate actors for further attacks, CISA said Wednesday.

The advisory, which was prepared jointly with the FBI and the Department of Defense Cyber Crime Center, warns of the continued activity of the threat actors, which target U.S. and foreign organizations from various sectors, including government, education, finance, healthcare and defense.

To help organizations defend against attacks, the advisory also details indicators of compromise as well as mitigation guidance.

CISA Issues Warning About Ransomware Threat From Iran-Based Cyber Actors

The Potomac Officers Club’s 2024 Intel Summit will bring together top Intelligence Community officials, government decision-makers and industry executives to discuss the future of American intelligence. Register now to attend this important event!

//
NASA Taps Harmony Myers as Acting Deputy Chief of Safety & Mission Assurance Office
Published on
NASA Taps Harmony Myers as Acting Deputy Chief of Safety & Mission Assurance Office

Harmony Myers has been appointed acting deputy chief of the Office of Safety and Mission Assurance at NASA, according to the executive’s LinkedIn post shared Tuesday.

Myers takes on a leadership role overseeing safety and mission assurance activities across the agency’s different programs. She will be responsible for policy direction, functional management and coordination of the said activities.

The executive joined the agency in 2006 as a safety and reliability engineer before serving a variety of roles. She was later assigned to the NASA Safety Center at the Ohio Aerospace Institute in Cleveland, Ohio as director of the technical excellence office before her promotion to director of the center.

Prior to her move to NASA, Myers served as systems engineer and reliability engineer for United Space Alliance, where she got to work at the Kennedy Space Center. She also served as the region governor for the Society of Women Engineers.

/
Antitrust, Labor Agencies Partner to Boost Information-sharing During M&A Reviews
Published on
Antitrust, Labor Agencies Partner to Boost Information-sharing During M&A Reviews

The Federal Trade Commission, the Department of Justice Antitrust Division, the Department of Labor and the National Labor Relations Board have signed a memorandum of understanding with the aim of enhancing investigations carried out to assess the impact of mergers and acquisitions on labor markets, thereby protecting workers and ensuring fair competition.

The FTC said Wednesday that under the MOU, when it conducts a review of a merger or acquisition alongside the DOJ, the DOL and NLRB will, upon request, provide information, data and technical assistance in support of the investigation. The DOL and NLRB will also provide relevant training to personnel from the antitrust agencies.

The MOU calls on the four agencies to meet biannually to discuss the implementation of the activities covered by the agreement.

Commenting on the MOU, FTC Chair Lina Khan said, “By deepening partnerships with the National Labor Relations Board, the Department of Labor, and the Justice Department’s Antitrust Division, the FTC will keep building on our whole-of-government efforts to ensure that all Americans can get a fair shot in our economy, free from unlawful coercion.”

For his part, Assistant Attorney General Jonathan Kanter of the Justice Department’s Antitrust Division said, “Our partnership with the FTC, NLRB, and DOL will help us identify and take action against mergers that threaten to harm competition for workers.”

/
US & Canada Agree to Cooperate on Protecting Consumer Privacy
Published on
US & Canada Agree to Cooperate on Protecting Consumer Privacy

The Federal Communications Commission and the Office of the Privacy Commissioner of Canada have signed a memorandum of understanding stating their intentions to cooperate and share information to enforce U.S. and Canadian laws protecting consumer privacy, data and cybersecurity.

FCC Chair Jessica Rosenworcel and Privacy Commissioner of Canada Philippe Dufresne signed the cross-border cooperation agreement as the digital age enables telecommunication carriers to access vast amounts of personal information, which is stored and transmitted across complex networks that extend beyond traditional borders, the FCC said Wednesday.

Under the MOU, both parties agreed to assist with investigations related to consumer privacy, data and cybersecurity; facilitate research and education related to the protection of personal information; and share knowledge and expertise through bilateral meetings, digital videoconferences, training programs and staff exchanges.

“In a world where information flows transcend borders and jurisdictions, information sharing and enforcement cooperation with international partners is essential to protecting individuals’ fundamental right to privacy,” said Dufresne. 

/
FedRAMP Launches Digital Authorization Package Pilot
Published on
FedRAMP Launches Digital Authorization Package Pilot

The Federal Risk and Authorization Management Program has unveiled a pilot program to explore the use of the Open Security Controls Assessment Language — OSCAL — to develop machine-readable, digital authorization packages.

FedRAMP said Wednesday the Digital Authorization Package pilot’s goal is to enhance the program’s open source digital authorization package guidance and validation tooling and help cloud service providers, or CSPs, prepare system security plans, or SSPs, in OSCAL.

An SSP is one of the key documents in a FedRAMP authorization package. The document describes a system’s component services and security requirements and identifies the implemented security controls to meet those requirements.

FedRAMP will work with federal agencies, CSPs and providers of governance, risk and compliance tools and run the pilot as an open source project on GitHub.

The program expects pilot participants to review FedRAMP OSCAL SSP technical guidance, identify areas for improvement in the documentation, use the OSCAL SSP validation rules, collaborate with the OSCAL automation team and offer feedback on GitHub and during weekly conference calls.

1 308 309 310 311 312 2,707