Tag Archives: Personal Identity Verification

OIG Audit Report: GSA Should Launch Measures to Properly Account for Contract Employee Access Cards

GSA

The General Services Administration's (GSA) office of inspector general has offered recommendations to help GSA improve its management of personal identity verification cards being issued to contract employees to access the agency’s information technology systems and buildings. GSA’s deputy administrator should take measures to properly account for issued PIV cards, such as recovering and terminating all access cards from former contract employees, the report stated.

Read More »

NIST Seeks Comments on Draft Federal Identity Verification Standard

Access Management

The National Institute of Standards and Technology is looking for pubic input on a draft update to the agency’s personnel verification guidelines for federal employees and contractors. NIST is requesting feedback on its draft Federal Information Processing Standard 201-3 for the personal identity verification of contractors in physical and logical access applications.

Read More »

Federal CISOs on Addressing Telework-Related Cybersecurity Challenges

Telework

Chief information security officers at federal agencies are working to address cybersecurity challenges related to having a remote workforce during the COVID-19 pandemic. Venice Goodwine, CISO at the Department of Agriculture, discussed the need for CISOs to address the issue of data access and the role of zero trust in addressing the visibility question.

Read More »

DHS Provides Employees, Contractors Network Access Via Alternative Credentials

The Department of Homeland Security (DHS) has started releasing derived alternative credentials to allow staff and contractors with expiring personal identity verification cards to gain remote access to DHS networks during the coronavirus pandemic, Federal News Network reported Monday.

Read More »

OMB Issues Updated Identity, Credential & Access Management Policy

The Office of Management and Budget issued a memorandum updating the identity, credential and access management policy for federal agencies. Agencies should transition their ICAM strategies and platforms from the levels of assurance model towards a new framework “informed by risk management perspectives, the federal resource accessed and outcomes aligned to agency missions,” according to the memo issued Tuesday by Russell Vought, acting OMB director. 

Read More »

NIST Releases Revised Handbook on Secure Access System for Mobile Devices

The National Institute of Standards and Technology has released the second draft of a handbook that features sample implementations of the Derived Personal Identity Verification Credentials System. The DPC System provides secure access to electronic resources through mobile devices. It is a variant of the PIV system, which was designed in response to a 2004 presidential directive to standardize access security mechanisms in federal agencies.

Read More »

OMB: Federal Agencies Reported 30,899 Cybersecurity Incidents to DHS in FY 2016

A report from the Office of Management and Budget says federal agencies reported 30,899 cybersecurity incidents to the Department of Homeland Security‘s U.S. Computer Emergency Readiness Team during fiscal year 2016. Grant Schneider, acting federal chief information security officer, wrote in a White House blog post that the annual Federal Information Security Modernization …

Read More »