Randy Resnick, Director of the Zero Trust Portfolio Management Office within the Defense Department’s (DoD) CIO office, laid out the broad strokes of DoD’s zero trust security plans during a presentation on August 23 at the 930GOV event organized by Digital Government Institute. […]

As Federal agencies continue to build out zero trust architectures, they are increasingly focused on a critical component of any zero trust strategy: identity, credential, and access management (ICAM) solutions. […]

The Federal government has come a long way with implementing zero trust security architectures, but Federal chief information officers (CIOs) and chief information security officers (CISOs) hope the future of zero trust is “instinctive,” and something that is naturally baked into agencies’ programming. […]

A senior Cybersecurity and Infrastructure Security Agency (CISA) official provided an update this week on agency-level activity in their migration toward zero trust security architectures mandated by President Biden’s 2021 cybersecurity executive order and subsequent guidance documents issued by CISA and the Office of Management and Budget (OMB). […]

The cultural and mindset shifts required to advance the migration by Federal agencies to zero trust security architectures are proving to be among the more stubborn areas of change in that sweeping effort, according to Angel Phaneuf, Chief Information Security Officer, at the U.S. Army Software Factory. […]

The Federal government’s march toward zero trust security architectures is well underway with guidance documents from several agencies. And while that guidance is crucial, Federal agencies cannot confine themselves only to the practices described in them, Federal experts said during an ATARC event on August 9. […]

Federal experts today agreed that while the FITARA Scorecard serves as a useful tool for agencies to track IT-related performance, many agencies struggle with funding to make meaningful progress on some FITARA grading categories. […]

Cloud security provider Zscaler said this week that its Zscaler Internet Access (ZIA) service received Federal Risk and Authorization Management Program (FedRAMP) High Authority to Operate (ATO) from the FedRAMP Joint Authorization Board (JAB). […]

Gerald Caron, chief information officer (CIO) and assistant inspector general (IG) for information technology at the Department of Health and Human Services (HHS), said this week that sustainability and continuous authentication are two of the keys to creating a robust identity and access management (IAM) strategy as part of how Federal agencies move to comply with President Biden’s 2021 cybersecurity executive order that requires migration to zero trust security architectures. […]

The Chips and Science Act approved by the House and Senate last week – and expected to be signed by President Biden next week – has generated a lot of headline news on the chips side of the legislation, including $52 billion of government funding to incentivize semiconductor makers to build new plants in the United States. […]

Angelica Phaneuf, Chief Information Security Officer at the Army Software Factory, explained some of the steps that her organization has been taking to meet the needs of zero trust security mandates at an August 2 event entitled Securing Identity in a Zero Trust Environment and hosted by Federal News Network. […]

The Technology Modernization Fund (TMF) today announced over $26 million of new project funding to the Department of Labor (DoL), AmeriCorps, and the U.S. Agency for International Development (USAID). […]

The focus on Federal agency cybersecurity scores in the 14th edition of the FITARA Scorecard released last week – and the lack of enough data from the government to allow the House Oversight and Reform Committee to get a good fix on how agencies performed on cybersecurity during the first half of 2022 – caught the eyes of private sector technology executives who said the government needs to do more to help agencies boost security. […]

The Defense Information Systems Agency (DISA) announced an extension of its Thunderdome Prototype zero trust security project, increasing the total length of the pilot program to 12 months with a new  expected completion date in January 2023. […]

A lack of required cybersecurity performance data for the largest 24 Federal agencies over the first half of 2022 left the House Oversight and Reform Committee partly in the dark as it formulated cybersecurity-related grades for the 14th version of its FITARA Scorecard issued by the committee today. […]

During a House Oversight and Reform Committee hearing today to discuss the newly-released 14th installment of the committee’s FITARA Scorecard, several Federal chief information officers (CIOs) agreed the scorecard serves as a useful tool for their agencies to track IT-related performance, but also offered recommendations on how the scorecard could improve. […]

The latest edition of the FITARA Scorecard released today by the House Oversight and Reform Committee shows a mild trend toward declining agency grades across a range of IT-related performance measures. […]

The 24 largest Federal agencies trended toward lower grades across several IT-related performance categories on the 14th installment of the House Oversight and Reform Committee’s FITARA Scorecard issued by the committee on July 28. […]

In the long march to implementing zero trust architectures (ZTA), Federal agencies have focused on managing user identity and made tremendous progress in implementing identity authenticators into their systems.  […]

Ken Myers, the chief Federal ICAM Architect at the General Services Administration (GSA), explained today that the Federal Identity, Credential, and Access Management (FICAM) Architecture has similar goals to the Federal zero trust architecture (ZTA) strategy, with both of them emphasizing identity. […]

The House Oversight and Reform Committee is set to release version 14.0 of its FITARA Scorecard on July 28, according to a notice published by the committee’s Government Operations Subcommittee, which will hold a hearing on the same day beginning at 9:00 a.m. to discuss the scorecard’s finding with three Federal agency CIOs as witnesses. […]

The Government Accountability Office (GAO) released a decision today stating that the Office of Management and Budget (OMB) and the General Services Administration (GSA) have the authority to reduce reimbursement requirements on agencies that receive Technology Modernization Fund (TMF) awards, but can’t waive the reimbursement requirement completely. […]

CISA gets procurement authority, NIST picks quantum-resistant algorithms, NATO creates 1B euro tech investment fund, and more. For more news and insights on today’s mission-critical IT challenges, check us out on MeriTV. […]

How can technology transform the often-difficult citizen experience with government into the streamlined and intuitive interactions that the best private-sector companies offer?  On July 21 – we’re going to find out. The countdown to MerITocracy 2022: American Innovation Forum is on. In the lead-up to the in-person forum in Washington, D.C., we are table-setting a host of big issues that will get serious attention at MerITocracy 2022. […]

NASA is working through a unique set of challenges to implementing zero trust security architectures due to the age of some of its systems that tie back to launches decades ago of equipment in space that remains operable. […]

The Cybersecurity and Infrastructure Security Agency’s (CISA) Continuous Diagnostics and Mitigation (CDM) program offers a wide range of security benefits for Federal agencies. Still, a CISA official wants to help agencies unlock the program’s full potential. […]

DoD and VA EHR oversight and rollouts, CISA updates to Cloud Security TRA, new DoD AI strategy, and more. For more news and insights on today’s mission-critical IT challenges, check us out on MeriTV. […]

Enduring success in the drive to foundational improvements in IT systems and infrastructure seldom comes fast, cheap, or easy – or without plenty of lessons to share for the next agency in line that is driving toward similar goals. […]

The U.S. Air Force AFNet Sustainment and Operations Branch – in collaboration with the Air Combat Command (ACC) Directorate of Cyberspace and Information Dominance and the Platform One team– is driving toward developing a modern software-based perimeter that will deliver zero trust capabilities to applications across the service branch, an Air Force official said. […]

Bipartisan legislation introduced in the Senate on June 23 aims to create new rules for bulk exports of U.S. citizens’ personal data that would help protect that data from use by hostile foreign governments. […]