Tag Archives: Identity Credential and Access Management

House Lawmakers Ask IGs to Include Remote Access Software Vulnerabilities in FY 2021 FISMA Cyber Assessments

Virtual Private Network

The House Oversight and Reform Committee and heads of its subcommittees asked interim and current inspectors general of the U.S. intelligence community, the Department of Defense and eight other federal agencies to assess vulnerabilities related to the use of remote-access software to support telework during the COVID-19 pandemic for inclusion in their fiscal year 2021 cybersecurity evaluation. 

Read More »

GSA’s Governmentwide Policy Office Eyes Updated Guidance on Identity Risk Management

Ransomware Data

The Office of Governmentwide Policy (OGP) plans to release guidance on federal identity, credential and access management (FICAM) next year to cover topics such as managing digital identity risks and single sign-ons. Myers noted that the OGP is willing to launch collaborations on updating the FICAM guidance. “It is deprecated,” Myers said.

Read More »

Serena Chan: DISA to Test Enterprise Identity Mgmt Tech Prototype With Pilot Apps in January

Serena Chan

Serena Chan, director of the Defense Information Systems Agency’s (DISA) cyber development directorate, said DISA plans to begin testing in January 2021 its enterprise identity, credential and access management prototype with a subset of 13 applications from several Department of Defense components. The ICAM prototype is set to achieve initial operational capability in late December 2020. 

Read More »

Cynthia Mendoza on Intell Community’s Reference Architecture Framework

Cynthia Mendoza

Cynthia Mendoza, chief architect at the intelligence community, said the reference architecture framework (RAF) seeks to be a “cradle to grave” model that could enable IC to implement information technology programs through standard integration and business approaches. She cited the importance of building trust across the community’s IT enterprise and described RAF as a people process.

Read More »

CISA Provides Documents on ICAM Use in Public Safety

CISA

The Cybersecurity and Infrastructure Security Agency (CISA) has issued documents that discuss concepts and public safety use cases on identity, credential and access management technologies. CISA said its ICAM Value Proposition Suite features an overview of ICAM benefits and use cases in hurricane, drug, school shooting and bombing response scenarios.

Read More »

OMB Issues Updated Identity, Credential & Access Management Policy

The Office of Management and Budget issued a memorandum updating the identity, credential and access management policy for federal agencies. Agencies should transition their ICAM strategies and platforms from the levels of assurance model towards a new framework “informed by risk management perspectives, the federal resource accessed and outcomes aligned to agency missions,” according to the memo issued Tuesday by Russell Vought, acting OMB director. 

Read More »