The Department of Homeland Security is collaborating with industrial control system vendors to test products to secure critical facilities such as power plants against cyber attacks, Cyberscoop reported Monday. Jeanette Manfra, assistant director for cybersecurity at the Cybersecurity and Infrastructure Security Agency, said at the Hack the Capitol conference in Washington, D.C. that the DHS aims to “have much more capability” to detect and mitigate attacks to ICS infrastructure and evaluate ICS products before they enter the market.Read More »
The Department of Homeland Security released binding operational directives to direct agencies to implement cybersecurity measures against potential threats, but agencies failed to meet the deadlines outlined in the BoDs, FCW reported Tuesday. "I think stakeholders were worried about what we would do with the authority," Gabriel Taran, assistant general counsel for cybersecurity law at DHS, said at an event Monday.Read More »
Jeanette Manfra, an official with the Cybersecurity and Infrastructure Security Agency, has said that no evidence has so far been found to suggest that U.S. federal Domain Name System servers have been compromised by a global DNS hijacking campaign, FCW reported Friday. Initially reported in November last year, the hijacking campaign has affected numerous private companies and governments around the world.Read More »
An official with the Department of Homeland Security recently told House lawmakers that a Russian campaign is currently underway with the aim of compromising the process controls of government and private organizations belonging to critical U.S. industries. Jeanette Manfra, assistant secretary for cybersecurity and communication at the DHS National Protection and Programs Directorate, spoke during a joint hearing between the House Subcommittee on Cybersecurity and Infrastructure Protection and the Subcommittee on Emerging Threats and Capabilities. She said Russian attackers have been attempting to penetrate the industrial control systems of select U.S. business and government entities since at least 2015.Read More »
A facility that aims to strengthen cybersecurity at the Department of Health and Human Services has recently opened as part of October's National Cybersecurity Awareness month and the Trump administration's National Cybersecurity Strategy.Read More »
The Department of Homeland Security aims to develop an approach for government chief information security officers to assign and compare risk scores to agency networks, Federal News Network reported Friday.
The 2019 FISMA guidance now requires federal organizations to submit a justification memorandum to procure monitoring products and services not covered under CDM contracts.
The justification document must be sent to the CDM program management office, OMB resource management office and the Federal Chief Information Officer’s cybersecurity team.
OMB has also permitted the use of existing resources that align with CDM requirements but are not acquired through General Services Administration contracts.