A new CyberSheath study has found that defense contractors showed an average score of -15 in the Supplier Performance Risk System, which is used to determine whether vendors meet the 110 security
MoreJohn Sherman, chief information officer of the Department of Defense and a 2023 Wash100 awardee, has issued a memorandum directing DOD component agencies to assess their compliance with several measures for handling
More by Jane Edwards
The Small Business Administration’s (SBA) office of inspector general has issued a report on eight performance and management challenges facing SBA in fiscal year 2022. The first two challenges outlined in the
More by Jane Edwards
The Department of Defense’s (DOD) office of inspector general (OIG) has recommended that the chief information officer include 3D printers and other additive manufacturing systems in the portfolio of information technology platforms
More by Jane Edwards
Hackers are targeting federal information technology systems as employees transition to telework due to the COVID-19 pandemic and Oki Mek, a top IT adviser at the Department of Health and Human Services
More by Jane Edwards
The Government Accountability Office (GAO) has recommended that the Department of Veterans Affairs (VA) implement security controls, manage information technology supply chain risks and establish elements of its cybersecurity risk management program as
More by Jane Edwards
The Federal Risk and Authorization Management Program has worked with industry and the National Institute of Standards and Technology to develop the Open Security Controls Assessment Language to help automate the authorization
More by Jane Edwards
Maj. Gen. Thomas Murphy, director of Protecting Critical Technology Task Force at the Department of Defense, told Breaking Defense in an interview published Monday about the task force’s efforts to come up with
More by Jane Edwards
Ron Ross, a National Institute of Standards and Technology fellow, said NIST is waiting for the Office of Management and Budget’s office of information and regulatory affairs to finish its final review and approve
More by Jane Edwards
The National Institute of Standards and Technology has released a draft version of its update to the Risk Management Framework designed to help federal agencies and companies safeguard their information systems from cyber
More by Jane Edwards