Home / Tag Archives: risk management

Tag Archives: risk management

Christopher Krebs: CISA Eyes Consolidation of Civilian Agencies’ Cyber Efforts

Christopher Krebs, director of the Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency and a 2019 Wash100 winner, said CISA is collaborating with the Office of Management and Budget and Congress to explore approaches to consolidate civilian agencies’ cybersecurity initiatives, Nextgov reported Thursday.

Read More »

NIST Looks to Develop Common Cyber Standards for IoT Devices

The National Institute of Standards and Technology solicited comments from industry partners as it works on a set of cybersecurity standards for manufacturers and users of internet of things-based devices, Federal News Network reported Tuesday. NIST officials held a workshop at its Gaithersburg, Md.-based headquarters Tuesday to seek industry feedback on an IoT risk management report released in June.

Read More »

GAO: Agencies Should Apply Risk Mgmt, Cybersecurity Practices

The Government Accountability Office has listed 58 recommendations to help agencies implement key practices in their respective risk management and cybersecurity initiatives. The recommendations include coordination with the secretary of the Department of Homeland Security, development of a risk management process document, facilitation of organization-wide security assessments and modernization of risk evaluation policies, GAO said in a report published Thursday.

Read More »

NIST Issues Privacy Framework for Improved Security, Risk Management

The National Institute of Standards and Technology released its draft of "Privacy Framework" that provides information on how agencies and partners could identify and manage privacy risks more efficiently amid the growing use of the internet and new information technology platforms. “The Privacy Framework provides a common language for understanding, managing and communicating privacy risk with internal and external stakeholders,” NIST said in the document issued Tuesday.

Read More »

DHS Officials Discuss Efforts of Two Newly Formed Groups to Ensure Supply Chain Security

Officials from the Department of Homeland Security discussed the functions and responsibilities of two new organizations created to address cyber vulnerabilities in the technology supply chain during an Atlantic Council event, FCW reported Thursday. DHS formed a supply chain task force, while the Secure Technology Act passed by Congress created the Federal Acquisition Supply Chain Security Council intended to build cybersecurity resilience into federal acquisition rules.

Read More »

Naomi Lefkovitz on Five Functions of NIST’s Privacy Framework

Naomi Lefkovitz, senior privacy policy adviser at the National Institute of Standards and Technology, offered updates on a proposed framework to help organizations address issues related to data privacy at RSA Conference 2019, Threatpost reported Thursday. Lefkovitz told the audience that privacy should be considered as part of organizations’ “broader enterprise risk management activity.”

Read More »

FDIC Inspector General Advises Boost in Security, Management, Innovation

The Federal Deposit Insurance Corporation's Office of the Inspector General has identified the agency's weaknesses in the areas of security, technological modernization and management. Jay Lerner, FDIC inspector general, said Thursday in a report the agency needs to focus on cybersecurity risk oversight, financial technology innovation, information security management, crisis preparation and enterprise risk management.

Read More »

DHS Aims to Address Supply Chain Risks in Federal Acquisition via New Task Force; Chris Krebs Quoted

The Department of Homeland Security’s national risk management center will create a new information and communications technology task force to help address risks to the supply chain, Federal News Network reported Monday. ​The report said the task force is expected to work on efforts to reduce such risks in the federal acquisition process in 2019.

Read More »