Tag Archives: Federal Information Security Modernization Act of 2014

Senate Lawmakers Ask CISA, OMB to Submit Docs Amid Probe Into Recent Cyber Hacks

Hack the Army 3.0

Sen. Gary Peters, D-Mich., chairman of the Senate Homeland Security and Governmental Affairs Committee, and Sen. Rob Portman, R-Ohio., ranking member of the Senate panel, have asked the federal government to provide information on its response to cyberattacks involving SolarWinds Orion and Microsoft Exchange. Portman and Peters asked DeRusha to provide information on the government’s current federal cybersecurity strategy

Read More »

OMB Chief Russell Vought Releases Memo on FISMA Reporting Requirements for FY 2021

Russell Vought

Russell Vought, director of the Office of Management and Budget (OMB), has issued a memo detailing reporting requirements and deadlines for agencies in fiscal year 2021 in compliance with the Federal Information Security Modernization Act (FISMA) of 2014. Vought said the updated FISMA guidance directs agencies to report to OMB the status of their data security programs. 

Read More »

GAO: Agencies Need to Bolster Information Security Efforts

The Government Accountability Office has evaluated the information security programs of federal agencies and the Office of Management and Budget's performance in supervising these efforts. GAO said Friday it found that the majority of its study's 16 sample agencies exhibited weaknesses in most areas of security control.

Read More »

OMB Guidance Sets New Continuous Diagnostics & Mitigation Requirements for Agencies

The Office of Management and Budget has issued an updated guidance that outlines new Continuous Diagnostics and Mitigation program requirements for agencies to comply with the Federal Information Security Modernization Act of 2014, FedScoop reported Friday. The memo now directs agencies to submit justification should they choose to buy continuous monitoring tools and capabilities outside of the General Services Administration’s IT Schedule 70 CDM tools special item number, CDM Dynamic and Evolving Federal Enterprise Network Defense and other contract vehicles.

Read More »

Inspector General: 64 of DHS’ National Security, Unclassified Systems Lack Authority to Operate

The Department of Homeland Security‘s inspector general evaluated DHS’ information security program for fiscal 2017 in compliance with the Federal Information Security Modernization Act of 2014 and found that 64 of its national security and unclassified systems lacked authority to operate. DHS IG said in a report published Wednesday the department failed …

Read More »

GSA to Update Acquisition Regulation With Data Security, Cyber Incident Reporting Requirements

The General Services Administration has announced plans to amend the GSA Acquisition Regulation to integrate new information security and cyber incident reporting requirements for government contractors and contracting officers as part of its unified regulatory agenda. A Federal Register notice posted Friday says GSA plans to require contractors to protect agency-related …

Read More »

OMB: Federal Agencies Reported 30,899 Cybersecurity Incidents to DHS in FY 2016

A report from the Office of Management and Budget says federal agencies reported 30,899 cybersecurity incidents to the Department of Homeland Security‘s U.S. Computer Emergency Readiness Team during fiscal year 2016. Grant Schneider, acting federal chief information security officer, wrote in a White House blog post that the annual Federal Information Security Modernization …

Read More »

OMB Sets New Data Breach Preparation, Response Policies

The Office of Management and Budget has established new policies on how federal agencies should prepare for and address a breach of personally identifiable information. In a memo published Tuesday, OMB offers a framework for efforts to assess and mitigate risks facing affected individuals as well as guidance on how to provide notification and assistance to …

Read More »

GAO: FDA Should Implement Agency-Wide Info Security Program to Address Risks

The Government Accountability Office has recommended the Food and Drug Administration fully implement an agency-wide information security program and take 166 specific actions to address gaps in information security controls. GAO said in a report published Thursday the FDA has taken steps to protect seven GAO-reviewed systems that might jeopardize the confidentiality, integrity and …

Read More »