/
Treasury Orders Sanctions Over Iran’s UAV Programs; Wally Adeyemo Quoted
Published on
Treasury Orders Sanctions Over Iran’s UAV Programs; Wally Adeyemo Quoted

The Department of the Treasury has imposed sanctions on two companies and four individuals that have supported Iran’s unmanned aerial vehicle programs that have been used to conduct attacks on U.S. forces and international shipping.

“Iran’s proliferation of UAVs across the region threatens international peace and stability. Iran and its proxy militants have used UAVs to attack U.S. forces, our partners, and international shipping,” Wally Adeyemo, deputy secretary of the Treasury, said in a statement published Friday.

Adeyemo added that the department will continue to hold the Middle Eastern country accountable for its violent and irresponsible acts.

The department’s office of foreign assets control designated Saeed Aghajani, a brigadier general of Iran’s Islamic Revolutionary Guard Corps, for leading the planning and training for the IRGC aerospace force’s UAV operations and Iran-based company KIPAS for its involvement in improving the force’s drone program.

“As a result of today’s designations, all property and interests in property subject to U.S. jurisdiction of the persons designated are blocked, and U.S. persons are generally prohibited from engaging in transactions with the designated persons or their blocked property,” the department’s statement reads.

/
Jen Easterly: CISA Begins Classifying Systemically Important Critical Infrastructure Entities
Published on
Jen Easterly: CISA Begins Classifying Systemically Important Critical Infrastructure Entities

The Cybersecurity and Infrastructure Security Agency (CISA) has started identifying parts of U.S. critical infrastructure considered primary systemically important amid cybersecurity threats, CyberScoop reported Friday.

CISA Director Jen Easterly shared during a Center for Strategic and International Studies event that the agency is classifying entities “based on economic centrality, network centrality and logical dominance in the national critical functions.”

The idea of labeling systemically important critical infrastructure was first presented by the Cyberspace Solarium Commission to Congress, but lawmakers have yet to convert the proposal into law.

“Notwithstanding whether this ends up in legislation or not, and I certainly hope it does, we are already thinking through the model,” shared Easterly.

However, the official conceded that, without any legislation, CISA could not incentivize important infrastructure to meet cybersecurity standards and penalize entities failing to shore up their defenses.

/
Grundy County, Illinois Selects CentralSquare Technologies Pro Suite to Improve Compliance, Speed Response Times; Chris Kindelspire Quoted
Published on
Grundy County, Illinois Selects CentralSquare Technologies Pro Suite to Improve Compliance, Speed Response Times; Chris Kindelspire Quoted

CentralSquare Technologies announced on Thursday that the company has been selected by Grundy County, Illinois to provide its Public Safety Suite Pro as its public safety suite including CAD, 911, RMS, and Jail.

“The Pro platform exploits other resources allowing for greater access into these modules when working in the field. This provides a greater situational awareness to our member agencies,” said Chris Kindelspire, Director Electronic Operations, Grundy County ETSB.

Grundy chose CentralSquare Pro Suite over other software platforms to improve compliance, speed response times and create data entry and module efficiencies. With the Pro Suite, Grundy County can integrate the platform with their current partner agency’s body camera systems, adhering to state law enforcement mandates. 

With CentralSquare’s Pro Suite, Grundy County anticipates reduced time spent on dispatching calls and data entry due to improved mapping data, e-citation capabilities, integrated CAD on mobile devices, and Automated Vehicle Location capabilities.

/
DOE Funds Prairie Study on Carbon Capture Tech for Future Commercial Use
Published on
DOE Funds Prairie Study on Carbon Capture Tech for Future Commercial Use

The Department of Energy (DOE) has awarded the University of Illinois’s Prairie Research Institute (PRI) $4 million to fund a front-end engineering design study for the potential commercialization of an industrial carbon capture technology. 

PRI will explore a system that uses pressure swing adsorption and cryogenic refrigeration capabilities to separate up to 95 percent of carbon dioxide emissions at industrial plants, LafargeHolcim, a study partner, said Thursday. 

For the FEED study, the institute will equip the Cryocap FG system from industrial gas company Air Liquide at LafargeHolcim’s Holcim Ste. Genevieve cement plant in Missouri featuring the largest kiln in the world.

As part of the DOE funding, PRI will also provide a potential business case for Cryocap FG and the technology’s impact on the economy and the environment.

“It’s exciting to collaborate with LafargeHolcim in the U.S. to explore the application of this carbon capture technology at a commercial scale, in a way that has the potential for significant impact,” shared Kevin O’Brien, the project’s principal investigator at PRI.

/
Lockheed Martin Adds 300 New Jobs in F-16 Program; Danya Trent Quoted
Published on
Lockheed Martin Adds 300 New Jobs in F-16 Program; Danya Trent Quoted

Lockheed Martin has announced the addition of over 300 new jobs in F-16 production and sustainment areas at the company’s location in Greenville, South Carolina by the end of next year.

Lockheed said Monday the company is seeking to fill positions including airframe and power plant mechanics, avionics technicians, engineers, supervisors, tool makers and quality inspectors, among other roles, in support of its F-16 program.

Danya Trent, vice president of Lockheed Martin’s F-16 program said the new positions will bring more jobs to the area and enhance the company’s offerings to its government and commercial customers.

“Many of these positions are on the leading edge of our digital engineering efforts on our F-16 production line,” Trent explained. “This is an incredibly rewarding opportunity to join the team that sustains and produces the F-16 for armed forces around the world.”

While Lockheed is seeking eligible applicants with aircraft-specific experience, it is not required for some positions, and on-the-job training is available as needed. New hire incentives include $2,000 sign-on bonuses and up to $5,000 for relocation.

Additionally, Walt Lindsley, Lockheed’s Greenville site director noted that 35 percent of the company’s employees are veterans, and Lockheed has participated in several career events exclusively for transitioning military service members and veterans into the workforce.

In the Department of Defense’s recent Fiscal Year 2020 Defense Spending by State report, Lockheed Martin was listed as the top recipient of defense contracts, with a FY 2020 total of $72.9 billion received.

To learn more and apply for open positions, visit LockheedMartinJobs.com.

//
FedRAMP Updates Marketplace Guidance for Cloud Providers
Published on
FedRAMP Updates Marketplace Guidance for Cloud Providers

Federal Risk and Authorization Management Program (FedRAMP) has updated a document designed to guide cloud service providers (CSPs) as they pursue a designation in the FedRAMP Marketplace. 

The document lists the requirements CSPs will need to satisfy before being designated in the marketplace, which federal agencies use to identify cloud service offerings that have achieved authorized, ready or in process status under FedRAMP, the program’s office said Thursday. 

The document has been updated to clarify how CSPs can achieve “in-process” designation and explain a new provision for when federal agencies no longer employ a CSO.

FedRAMP originally published the document in June 2019. The program aims to standardize the security of cloud products used by the federal government.

/
NIST’s National Cybersecurity CoE Issues Draft Reports on Hardware-Enabled Security, Trusted Cloud
Published on
NIST’s National Cybersecurity CoE Issues Draft Reports on Hardware-Enabled Security, Trusted Cloud

The National Cybersecurity Center of Excellence (NCCoE) is seeking public comments on three draft reports on trusted cloud and hardware-enabled security

Two of the draft reports focus on hardware-enabled security and the first one looks at security technologies and techniques that can enhance data protection and platform security for edge computing and cloud data centers, the National Institute of Standards and Technology said Wednesday. 

The second draft report discusses an approach for securing container deployments in multitenant cloud environments and “describes a prototype implementation of the approach intended to be a blueprint or template for the general security community,” the document’s abstract reads. 

The third draft report titled Trusted Cloud: Security Practice Guide for VMware Hybrid Cloud Infrastructure as a Service (IaaS) Environments seeks to build a trusted cloud platform that will demonstrate how trusted compute pools using hardware roots of trust can deliver the needed security capabilities.

Comments on the draft reports are due Dec. 6th. 

//
FedRAMP Plans to Apply CISA’s .govCAR Method to Other Authorization Aspects; Zach Baldwin Quoted
Published on
FedRAMP Plans to Apply CISA’s .govCAR Method to Other Authorization Aspects; Zach Baldwin Quoted

The Federal Risk and Authorization Management Program (FedRAMP) recently teamed up with the Cybersecurity and Infrastructure Security Agency (CISA) to apply CISA’s .govCAR methodology to score security controls of cloud service providers based on their capability to detect and respond to threats and now intends to use the framework to eight other aspects of the FedRAMP authorization process, FedScoop reported Thursday.

CISA uses the .govCAR method to perform threat-based assessments of cyber capabilities. 

FedRAMP now plans to integrate the methodology into annual reviews to focus on threat-based controls and use it in the agile authorization process. The program is also eyeing to use framework to help prioritize remediation initiatives, improve continuous monitoring of systems and facilitate the decision-making process with threat-based data. 

“FedRAMP is exploring how this data can be used to create a risk profile of each security capability in support of authorization decisions,” said Zach Baldwin, program manager for strategy, innovation and technology within FedRAMP’s program management office at the General Services Administration.

Baldwin noted that FedRAMP is performing control assessments and intends to issue updated risk scoring in an upcoming blog post.

//
NSA, CISA Release Guidance on 5G Cloud Security; Cyber Director Rob Joyce Quoted
Published on
NSA, CISA Release Guidance on 5G Cloud Security; Cyber Director Rob Joyce Quoted

The Cybersecurity and Infrastructure Security Agency (CISA) and the National Security Agency (NSA) have jointly published new guidance to help organizations detect malicious cyber activity in the 5G cloud.

The Security Guidance for 5G Cloud Infrastructures: Prevent and Detect Lateral Movement helps organizations address lateral movements made by cyber actors that have breached through a 5G cloud system, NSA said Thursday.

The document is the initial entry to a four-part series produced by the Enduring Security Framework public-private working group, which tackles high-priority cyber issues threatening U.S. infrastructure.

“This series exemplifies the national security benefits resulting from the joint efforts of ESF experts from CISA, NSA and industry,” said Rob Joyce, cybersecurity director at NSA.

NSA’s list of cybersecurity guidance can be found here.

//
Former DOE, DHS CIO Karen Evans Now Cyber Readiness Institute’s New Managing Director
Published on
Former DOE, DHS CIO Karen Evans Now Cyber Readiness Institute’s New Managing Director

Karen Evans, an over two-decade cybersecurity policy official, has joined Cyber Readiness Institute as the new managing director overseeing its day-to-day operations.

CRI said Wednesday that Evans will help it in providing free cybersecurity tools and resources to improve the cyber readiness of small and medium-sized enterprises around the world.

The newly appointed director previously served as a chief information officer for both departments of Energy and Homeland Security and an administrator for the Office of Management and Budget’s Office of Electronic Government and Information Technology.

She also founded the non-profit organization U.S. Cyber Challenge that delivers training for cybersecurity professionals with the help of partner universities.

“Karen’s extensive credentials and experience addressing cybersecurity issues from within government and the private sector distinguished her as the best person to help lead CRI to new heights,” explained Sam Palmisano, co-chair of CRI and chairman of The Center for Global Enterprise.

1 967 968 969 970 971 2,624