Army to Tighten Access to Cloud-Based Collaboration Tools
Published on
Army to Tighten Access to Cloud-Based Collaboration Tools

The U.S. Army has implemented new changes to access protocols for Army 365 services, the service branch’s suite of collaboration and document-sharing tools, in a move aimed at improving the security of sensitive information against digital threats, DVIDS reported Tuesday.

Beginning June 1, the Network Enterprise Technology Command will block access to all Army 365 services through commercial networks and exceptions to this access block will be granted by designated authorities on a very limited basis.

Users who need to access the services can submit exception requests through the designated portal.

In preparation for the access block protocol, the Army encourages users to transition to more secure alternatives such as Azure Virtual Desktop, or AVD, and Hypori to access Army 365 applications such as Webmail, Teams, SharePoint Online and OneDrive.

Hypori is a virtual machine that uses MobileConnect and EAMS-A for authentication and is accessible through the Hypori Halo and Mobile Connect applications.

AVD has enhanced security features including common access card login and S/MIME encryption.

Potomac Officers Club - 2024 Army Summit

Join the Potomac Officers Club’s 9th Annual Army Summit on June 13. Register here to save your seat at the event and hear from Army officials about their most urgent priorities for 2024 and beyond.

/
NSF, DOE Announce Selection of 35 National AI Research Resource Pilot Projects; Sethuraman Panchanathan Quoted
Published on
NSF, DOE Announce Selection of 35 National AI Research Resource Pilot Projects; Sethuraman Panchanathan Quoted

The National Science Foundation and the Department of Energy have selected the first round of projects under the National Artificial Intelligence Research Resource, or NAIRR, pilot.

Through the pilot, AI researchers and students will gain access to advanced computing systems, data and other resources, NSF said Monday.

“The NAIRR pilot, fueled by the need to advance responsible AI research and broaden access to cutting-edge resources needed for AI research, symbolizes a firm stride towards democratizing access to vital AI tools across the talented communities in all corners of our country,” said NSF Director Sethuraman Panchanathan.

In total, 35 AI-related projects were selected for the program. Twenty-seven of these projects will be backed by NSF-funded advanced computing systems, including Delta of the National Center for Supercomputing Applications at the University of Illinois Urbana-Champaign and the Pittsburgh Supercomputing Center’s Neocortex system.

DOE will provide the remaining eight projects access to the department-backed systems, including the AI Testbed at Argonne National Laboratory and the Summit supercomputer at Oak Ridge National Laboratory.

“While this is only the first step in our NAIRR efforts, we plan to rapidly expand our partnerships and secure the level of investments needed to realize the NAIRR vision and unlock the full potential of AI for the benefit of humanity and society,” Panchanathan said.

The projects selected for the initial NAIRR Pilot round include work on language model safety and security, the use of AI in agricultural pest identification and the development of AI tools to protect medical imaging data, among many other research areas.

/
NSWC Crane Awards LEEAP Hybrid Electric Project to Tessa Two
Published on
NSWC Crane Awards LEEAP Hybrid Electric Project to Tessa Two

Naval Surface Warfare Center Crane Division selected Indianapolis, Indiana-based non-traditional organization Tessa Two to work on a prototype hybrid electric platform development.

The company received Strategic & Spectrum Missions Advanced Resilient Trusted Systems, or S2MARTS, other transaction authority for the Light Expeditionary Energy Agile Platform – Hybrid Electric project, the National Security Technology Accelerator, which manages the OTA, said Monday.

The platform is envisioned to enable a lighter-classed vehicle to carry high power and high energy technologies for electronic warfare, providing warfighter with better protection. The initiative seeks to enhance military vehicles and generators to meet the requirements of changing warfighting concepts.

Tony Kestranek, deputy director of S2MARTS, said, “The Marine Corp Ultra-Light Tactical Vehicle/Light Tactical All-Terrain Vehicle needs to be agile yet capable, and that’s exactly what NSWC, Crane is developing through LEEAP.”

The project could potentially run for five years and have a follow-on activity.

/
Greg Stephens Joins DOE’s Fermi National Accelerator Lab as COO
Published on
Greg Stephens Joins DOE’s Fermi National Accelerator Lab as COO

Greg Stephens, former vice president at Amentum‘s technical services business, was appointed chief operating officer of the Fermi National Accelerator Laboratory at the Department of Energy.

Fermilab said Monday Stephens has experience working at 11 of the 17 U.S. national laboratories throughout his over 35 years of career in the academic, international, commercial, and government landscape.

Commenting on Stephens’ anticipated leadership of the lab’s operations, Fermilab Director Lia Merminga said, “His extensive experience, including at many of the national laboratories, and leadership roles, will be a huge asset in his leadership of our laboratory operations toward the safe, secure, efficient and effective execution of our mission.

At Amentum, Stephens was responsible for driving the delivery of a range of services, including operations, engineering, maintenance, quality assurance and risk assessment, to customers in support of their high-hazard chemical, biological and nuclear operations.

His career also includes time as an aerospace and simulation communications engineer at General Electric, operations manager at Westinghouse Electric Company and chief engineer for Tritium programs at Savannah River Nuclear Solutions.

//
For Vice Adm. Frank Whitworth, AI Key to National Geospatial-Intelligence Agency Mission
Published on
For Vice Adm. Frank Whitworth, AI Key to National Geospatial-Intelligence Agency Mission

The National Geospatial-Intelligence Agency must turn to artificial intelligence in order to manage the deluge of data generated by a growing number of collection assets that bear ever-improving imagery technologies, according to NGA Director Vice Adm. Frank Whitworth.

During the 2024 GEOINT Symposium on Monday, Whitworth, a 2024 Wash100 winner, cited the benefits the NGA has enjoyed from Project Maven, whose AI capabilities have helped accelerate the location of targets and anomalous objects. Even so, the NGA official noted the continued need for improved computer vision technologies, which would deliver superior positive identification and geolocation at speed.

Whitworth also pointed to the need for artificial intelligence to be integrated into collection orchestration, a part of the NGA mission that he described in 2023 as “the art of tasking pieces of the collection puzzle to become aligned with national priorities, operational and analytical needs, and real-world deadlines.” With the incorporation of AI, Whitworth envisions “a service that will continuously present options for the collection managers” based on prevailing variables like “constellation constraints, standing needs, and dynamic events.”

Just as important is the need to implement an enterprise AI infrastructure that is sufficiently optimized for the needs of the NGA so as to bring down cost.

Beyond hardware, Whitworth underscored the importance of AI being made part of the analytical workforce, an effort that would “require common tooling, techniques, and standards.”

Underpinning everything is the ethical and responsible use of AI, which the NGA seeks to spearhead. Whitworth said his agency is developing a program called GEOINT Responsible AI Training, which will train analysts to not only assess the risks of applying AI onto geospatial intelligence but also recognize and mitigate AI shortcomings.

/
White House Issues 2nd National Cybersecurity Strategy Implementation Plan, Announces ONCD Cybersecurity Posture Report
Published on
White House Issues 2nd National Cybersecurity Strategy Implementation Plan, Announces ONCD Cybersecurity Posture Report

The White House has published the second version of its implementation plan for the National Cybersecurity Strategy.

The National Cybersecurity Strategic Implementation Plan, or NCSIP Version 2, lays out 100 high-impact initiatives, includes 31 new objectives and brings in six agencies to lead initiatives for the first time, the White House said Tuesday.

These initiatives are categorized into five pillars: defend critical infrastructure, disrupt and dismantle threat actors, shape market forces to drive security and resilience, invest in a resilient future and forge international partnerships to pursue shared goals.

A strategic objective that falls under the third pillar is driving the development of secure Internet of Things devices. Developing a government IoT security labeling program is one of the initiatives to help achieve this goal.

This initiative is being advanced by the Federal Communications Commission, which has adopted rules to establish a voluntary cybersecurity labeling program for wireless IoT products, also known as the U.S. Cyber Trust Mark. Launched in March, the rules are intended to inform consumer decisions when buying such devices and create incentives for producers to meet higher cyber standards.

The FCC is expected to complete the initiative by the third quarter of fiscal year 2024, according to the implementation plan.

The release of NCSIP Version 2 coincides with the issuance of the Office of the National Cyber Director’s report on the country’s cybersecurity posture, which discusses five trends that transformed the strategic environment in 2023.

These five trends are evolving risks to critical infrastructure, ransomware, supply chain exploitation, commercial spyware and artificial intelligence.

Also listed in the report are cybersecurity actions that have been taken by the federal government, such as establishing cyber requirements to protect critical infrastructure, strengthening the national cyber workforce and advancing software security to produce safer products and services.

POC - 2024 Cyber Summit

Register here to attend the Potomac Officers Club’s 2024 Cyber Summit. Listen to cyber experts, government and industry leaders on June 6 as they discuss the latest trends and the dynamic role of cyber in the public sector.

/
Booz Allen’s Judi Dotson Deemed Most Popular Exec in GovCon Through Wash100 Audience Vote
Published on
Booz Allen’s Judi Dotson Deemed Most Popular Exec in GovCon Through Wash100 Audience Vote

In a close race that remained competitive until its end, Judi Dotson has won the 2024 Wash100 Award popular vote competition. Dotson is president of the global defense sector at Booz Allen Hamilton and received a record-shattering number of votes in comparison to past years’ races. Congratulations to Judi!

You know you’ve made it in government contracting if you’re considered for a Wash100 Award — actually receiving one is among the highest honors in the industry. Every year, Executive Mosaic sets out to praise the 100 most notable figures in GovCon through a rigorous evaluation process that weighs leadership capabilities, vision, innovation and reliability, among other metrics. Winners have included C-suite executives, federal agency officials, superior technologists and more.

Once the list is announced every January, EM opens the tradition to the public: for three months, our readers and the GovCon community get to participate by voting for their favorites among the recipients. Only one can prevail, and this year that is Judi Dotson!

Over 60,000 total votes were cast this year, a new high watermark for the race. Dotson accrued 1,000 by herself, a significant feat and never before achieved by an individual in this race.

“Judi’s record-shattering support from the GovCon executive landscape speaks not only to her popularity in our sector, but also to her ability to effect change and deliver positive impact within the public sector ecosystem,” shared Executive Mosaic CEO and Wash100 Award Founder Jim Garrettson.

“With this historic popular vote competition season, Judi has certainly cemented her legacy and her reputation as a GovCon leader, influencer and innovator. We congratulate Judi on her win, and we look forward to seeing the impact of her work continue to ripple across Booz Allen and the broader GovCon community,” Garrettson continued.

Signaling just how competitive the race was, the other contestants in the top 10 also each netted over 1,000 votes. Close behind Dotson was the silver medal champion, Jill Singer, vice president of federal solutions at AT&T and with the bronze, Karen Dahut, CEO of Google Public Sector (Dotson’s predecessor in her current role). These contestants fought long, hard and admirably!

Rounding out the top 10 were Carahsoft’s Craig Abod; Dotson’s colleague at Booz Allen, Steve Escaravage; Chairman of the Joint Chiefs of Staff Gen. Charles Brown Jr. (the highest ranked public sector representative at number 6); Oracle’s Kim Lynch; IBM’s Susan Wedge; the Department of Defense’s Dr. Kathleen Hicks; and the Defense Health Agency’s Lt. Gen. Telita Crosland.

Wedge deserves special notice for a race well run, as she spent nearly the first month and a half of the competition at number one.

One more hearty congratulations goes out to Dotson and her team at Booz Allen for this monumental victory! She joins the esteemed company of past winners Secretary of Defense Lloyd Austin, former U.S. Air Force CIO Lauren Knausenberger and Principal Deputy Director of National Intelligence Dr. Stacey Dixon.

10 Remarkable Government Cybersecurity Company Contractors in 2024
Published on
10 Remarkable Government Cybersecurity Company Contractors in 2024

Cybersecurity company contractors protect the nation’s digital system amid the constant bombardment of digital threats and hacking. Recognizing these cybersecurity concerns, significant efforts are made to strengthen online defenses.

 

In line with this, the Cybersecurity and Infrastructure Security Agency (CISA) partners with cybersecurity contractors to strengthen and reduce cyber and physical infrastructure risks. Explore these remarkable cybersecurity company contractors that secure the nation’s digital assets.

 

Who are cybersecurity company contractors?

 

Cconcept of cybersecurity and biometric scanning
Photo by ImageFlow/ Shutterstock

 

Some cybersecurity contractors stand out as great partners in protecting the nation’s digital systems. These trusted companies handle the tough challenges of cybersecurity, focusing on fortifying cyber defense and defending against cyber threats.

 

Here are the leading companies that have been awarded major government contracts in recent years.

 

Note: The following list of leading cybersecurity company contractors is ranked in no particular order. The selection criteria are based on a variety of factors, including market capitalization, revenue, and overall industry impact. That said, while they are highly regarded in the industry, plenty of other companies also offer exceptional products and services.

 

1. CrowdStrike

 

CrowdStrike, led by George Kurtz, is a cybersecurity company worth $77 billion. It provides cloud-based antivirus software to help the U.S. The Department of Justice responds to cyber spying.

 

2. Fortinet

 

Fortinet offers a range of security products, from routers to its flagship FortiGate firewall and cloud-based Security Fabric. It became a public company in 2009.

3. Palo Alto Networks

 

Palo Alto Networks has advanced firewalls and cloud-based security features. Through its array of systems, it claims to have stopped more than 8 billion cyber attacks.

 

4. Cloudflare

 

Valued at $32 billion, Cloudflare runs a global network of servers that help organizations make their websites faster and more secure with services like Server-Side Encryption (SSE) and Secure Access Service Edge (SASE).

 

5. Cisco

 

Networking hardware giant Cisco is a major player in cybersecurity, offering firewalls, intrusion prevention systems, and email security solutions. Its products protect the networks of enterprises, governments, and small businesses from threats and vulnerabilities.

 

6. Booz Allen Hamilton

 

Booz Allen Hamilton is a government and commercial cybersecurity consultant. It offers threat intelligence, incident response planning, and risk management to help organizations improve their defensive posture against cyber threats.

 

7. Microsoft

 

While primarily known for its software products, Microsoft provides holistic cybersecurity offerings, such as Azure Security and Office 365 Security. It safeguards its clients against data breaches caused by malware phishing attempts.

 

8. General Dynamics

 

General Dynamics tailors its cyber defense solutions to suit the government’s needs. It protects classified information systems used within federal agencies and ensures network safety through threat intelligence sharing. Moreover, General Dynamics actively responds to cyber incidents, thus minimizing further risks of attack and exploitation of critical infrastructures through cyberspace.

 

9. Leidos

 

Leidos is a globally recognized technology solution provider. It adheres to government-certified standards for conducting transactions internationally. Through Leidos’ risk assessments, penetration tests, and security operations, organizations can effectively identify cyber vulnerabilities before they even occur. It equips them with the capacity to mitigate any potential damage caused by such acts accordingly.

 

10. Amazon

 

Amazon is a large technology company that offers cybersecurity through its cloud computing platform, Amazon Web Services (AWS). Some of its notable services include security audits, threat assessment, and data encryption, helping businesses protect their cloud infrastructure from attackers.

 

What Security Clearances, Rules, and Regulations Apply To Cybersecurity Company Contractors

 

Leading cybersecurity company contractors are required to adhere to Facility Security Clearance (FCL), especially for sensitive government projects. FCL includes Secret or Top Secret. For example, Leidos asks employees to get Top Secret clearance to keep sensitive information safe while working on cyber projects. 

 

Moreover, cybersecurity company contractors must abide by the rules and regulations set by the government, such as:

 

  • Federal Acquisition Regulation (FAR) 52.204-21 mandates federal government contractors to adhere to 15 safeguarding controls for processing, storing, and transmitting federal contract information.

 

  • President’s Executive Orders (EO) mandate cybersecurity protocols to protect federal information systems from cyber threats.EO 14028 established a Cybersecurity Safety Review Board, jointly chaired by government and private sector leaders. It convenes post-significant cyber incidents to analyze and recommend cybersecurity enhancements.

     

    Additionally, EO13800 strengthens federal networks and the critical infrastructure of cybersecurity.

 

  • National Institute of Standards and Technology (NIST) 800-53 Security and Privacy Controls provides comprehensive guidelines for implementing security controls to safeguard federal information systems and privacy.

 

Importance of Security Clearances  for Cybersecurity Company Contractors

 

The cybersecurity industry faces several challenges, particularly when working with the government. One of the many reasons security clearance is important for cybersecurity company contractors is to prevent security breaches of sensitive government data. 

 

What happened in the 2020 U.S. government cyberattack led to costly data breaches. After this incident, cybersecurity leaders called for a comprehensive overhaul to protect critical infrastructure and data. 

 

The Current State of Cybersecurity

 

Cybersecurity
Photo by studio 63/ Shutterstock

 

The government consistently allocates substantial resources to enhance cybersecurity measures amid cybersecurity threats and challenges. A prime example of this allocation is the estimated $18.78 billion budget for cybersecurity spending in 2021. In addition to budget allocation, enhancing cybersecurity requirements remains crucial.

 

For instance, Microsoft Management Console (MMC) 2.0 was introduced by the DoD on December 26, 2023, as a new cybersecurity certification model. It simplified requirements for contractors into Levels 1, 2, and 3. However, compliance is still challenging and corresponds with existing cybersecurity standards.

 

Read more: Federal Supply Chain Security: Standards, Practices, and What Companies Need to Know

 

FAQs

 

Which government agency is responsible for cybersecurity?

 

The Cybersecurity and Infrastructure Security Agency (CISA) is responsible for cybersecurity. Since President Biden came into office, he has tasked the CISA with a great deal of responsibility to push cybersecurity across all government activities. 

 

Who are the leading government cybersecurity contractors?

 

The leading cybersecurity company depends on who offers what organization. Some organizations choose Cisco as it provides excellent networking and security solutions, while others may prefer General Dynamics as it addresses diverse challenges in this rapidly evolving defense field.

/
New USAID Acquisition Regulations Seek to Streamline Programmatic Information Collection & Submission by Contractors
Published on
New USAID Acquisition Regulations Seek to Streamline Programmatic Information Collection & Submission by Contractors

The U.S. Agency for International Development has issued an update to the USAID Acquisition Regulation that implements requirements concerning digital information planning, collection and submission that must be met by contractors working with the agency.

The final rule, which incorporates feedback collected from the public, will go into effect on June 5, according to the issuance posted Monday on the Federal Register.

The requirements put into effect USAID’s policy of managing digital information as a strategic asset in order to inform and evaluate foreign assistance programs. They also seek to streamline the way contractors submit information, with the ultimate goals of reducing administrative burden on contractors and the government alike, improving data quality and interoperability and enhancing insights into programmatic performance.

Changes to the AIDAR include requiring the use of the USAID Digital Front Door as the means of submitting information; mandating the creation of a data management plan; and, if necessary, the preparation of an activity monitoring, evaluation and learning plan.

NGA Solicits Commercial Technologies to Track Illicit Maritime Activities in Indo-Pacific
Published on
NGA Solicits Commercial Technologies to Track Illicit Maritime Activities in Indo-Pacific

The National Geospatial-Intelligence Agency has released its first commercial solutions opening solicitation seeking commercially available technologies designed to identify and track illicit maritime activities in the U.S. Indo-Pacific Command area of responsibility.

NGA said Monday that the Project Aegir initiative will involve multiple vendors working together to develop a commercial sensor architecture capable of monitoring illicit maritime activities in the region.

“By working with the commercial sector, we can drive automation that enables more rapid collections, allowing those on the front lines to move at speed to stay ahead of evolving global security threats,” said Devin Brande, director of commercial operations at NGA.

Under the program, commercial vendors will team up to create tasking algorithms for tipping and queuing multiple sensors, carry out data analysis, and provide unclassified intelligence on illicit maritime activities in the INDOPACOM area of responsibility.

Vendors can submit their responses from May 6 to 24 and selected vendors will get invited to pitch their capabilities before the Defense Innovation Unit from June 24 to 28.

The selected vendors will participate in a $1.5 million pilot program to test their capabilities. Project Aegir is expected to launch a major acquisition effort based on the results of the pilot.

1 379 380 381 382 383 2,698