Tag Archives: security control

OIG Report: DOD Should Classify 3D Printers as IT Systems in Need of Cybersecurity Controls

Cybersecurity

The Department of Defense’s (DOD) office of inspector general (OIG) has recommended that the chief information officer include 3D printers and other additive manufacturing systems in the portfolio of information technology platforms and establish cybersecurity controls in compliance with DOD and federal guidance. The inspector general also found that DOD components considered 3D printers as “tools” instead of IT systems.

Read More »

Oki Mek: AI, Machine Learning Could Help Speed Up ATO Processes

Artificial Intelligence

Hackers are targeting federal information technology systems as employees transition to telework due to the COVID-19 pandemic and Oki Mek, a top IT adviser at the Department of Health and Human Services (HHS), said that highlights the need to accelerate the authority to operate processes using artificial intelligence and machine learning. 

Read More »

GAO: VA Should Address Cybersecurity, IT Modernization Challenges

Dept. of Veterans Affairs

The Government Accountability Office (GAO) has recommended that the Department of Veterans Affairs (VA) implement security controls, manage information technology supply chain risks and establish elements of its cybersecurity risk management program as it pursues IT modernization efforts. VA has made strides when it comes to achieving data center consolidation goals and improving software licensing. 

Read More »

Maj. Gen. Thomas Murphy: DoD Task Force Aims to Elevate Security’s Importance in Acquisition

Maj. Gen. Thomas Murphy, director of Protecting Critical Technology Task Force at the Department of Defense, told Breaking Defense in an interview published Monday about the task force’s efforts to come up with policies to implement security controls meant to protect technologies.

Read More »

Ron Ross: NIST Awaits OMB Approval of Special Publication 800-53 Revision 5

Ron Ross, a National Institute of Standards and Technology fellow, said NIST is waiting for the Office of Management and Budget’s office of information and regulatory affairs to finish its final review and approve Special Publication 800-53, revision 5 to begin soliciting public comments on six cybersecurity documents, Federal News Network reported Tuesday.

Read More »

DoD, Industry in Talks Over Cloud Security Requirements

The Defense Department is in talks with heads of cloud service providers on how to streamline cloud security requirements in a rulebook the Defense Information Systems Agency issued in 2015, Federal News Radio reported Thursday. DoD’s Cloud Security Requirements Guide offers information on security controls that should be adopted by cloud …

Read More »

Air Force, Engility to Audit 100+ C2 Systems for Cyber Vulnerabilities

The U.S. Air Force has partnered with Engility to conduct a cyber risk audit of the service branch’s over 100 command-and-control systems as well as battle situation awareness platforms, Federal News Radio reported Tuesday. The military branch previously awarded the company a potential $31 million contract as part of the Defense Department’s efforts to build …

Read More »