The Cybersecurity and Infrastructure Security Agency (CISA) wants cybersecurity for the average American to become second nature – as normalized as putting on your seatbelt when you get into a car. However, cybersecurity is often misunderstood by those outside of the field, who view it as a job reserved for IT professionals in a high-tech environment. […]
The Cybersecurity and Infrastructure Security Agency (CISA) released a new update this week to its Secure Tomorrow Series Toolkit to help stakeholders in the critical infrastructure community better prepare for future cyber threats. […]
Eric Goldstein, the executive assistant director for cybersecurity at the Cybersecurity and Infrastructure Security Agency (CISA), stepped down from his role last month and announced on June 30 that he has landed at Capital One. […]
More than half of critical open-source tools are built on code that doesn’t internally manage memory overflow risks, potentially leaving them vulnerable to exploitation by hackers, according to findings released by the Cybersecurity and Infrastructure Security Agency (CISA) on June 26. […]
The Cybersecurity and Infrastructure Security Agency (CISA), along with the National Council of Statewide Interoperability Coordinators (NCSWIC), has released updated SAFECOM Guidance on Emergency Communications Grants (SAFECOM Guidance), which is focused on assisting state and local governments in accessing funding for emergency communications. […]
A top Cybersecurity and Infrastructure Security Agency (CISA) official emphasized today that CISA can’t do its job as the nation’s cyber defense agency without the help from industry and academia. […]
The Cybersecurity and Infrastructure Security Agency (CISA) and its Joint Cyber Defense Collaborative (JCDC) conducted their first-ever AI tabletop security incident exercise on June 13 with more than 50 AI experts from government agencies and private sector tech firms. […]
The Cybersecurity and Infrastructure Security Agency (CISA) is preparing to release a Buyer’s Guide, which CISA Director Jen Easterly on Wednesday said she’s particularly excited about because it will help to shift consumers’ mindset from secure by design to secure by demand. […]
A key advisory panel to leadership of the Cybersecurity and Infrastructure Security Agency (CISA) voted on Wednesday to approve three recommendations to CISA Director Jen Easterly that aim to improve the operations of the Joint Cyber Defense Collaborative (JCDC). […]
The Cybersecurity and Infrastructure Security Agency (CISA) issued guidance on Thursday that aims to help Federal agencies meet requirements related to the encryption of Domain Name System (DNS) traffic and bolster the cybersecurity of their IT networks. […]
Eric Goldstein, the executive assistant director for cybersecurity at the Cybersecurity and Infrastructure Security Agency (CISA), is stepping down from his role next month. […]
Sen. JD Vance, R-Ohio, is calling on the Cybersecurity and Infrastructure Security Agency (CISA) to provide more details on a People’s Republic of China (PRC) state-sponsored cyber actor – known as Volt Typhoon – which he says poses a national security threat. […]
The head of the Cybersecurity and Infrastructure Security Agency (CISA) said today that her team has plans to unveil its own international cyber strategy on the heels of the State Department’s release of its International Cyberspace and Digital Policy Strategy during the RSA Conference in San Francisco last week. […]
A total of 68 tech firms have signed onto the Cybersecurity and Infrastructure Security Agency’s (CISA) Secure by Design pledge under which they will use best efforts over the next year to build better security into their products. […]
Cybersecurity and Infrastructure Security Agency (CISA) Director Jen Easterly said her agency is due to reveal later on Wednesday at the RSA Conference in San Francisco that 60 tech companies will be signing onto a voluntary secure-by-design pledge to make their technology products more secure against ransomware and other forms of cyberattacks. […]
The Cybersecurity and Infrastructure Security Agency (CISA) is adding four new members to the Cyber Safety Review Board (CSRB) established by the Department of Homeland Security (DHS) in 2022 to review and assess major cybersecurity events, including former CISA Director Chris Krebs. […]
Cybersecurity and Infrastructure Security Agency (CISA) Director Jen Easterly told lawmakers on April 30 that the Biden administration’s fiscal year 2025 request for CISA will help fund agency activities in three key areas, including to fight malign Chinese cyber actors. […]
As the Cybersecurity and Infrastructure Security Agency (CISA) celebrates the one-year anniversary of its Secure by Design initiative, the agency is looking to elevate the effort in public conversation and have customers make more demands of software vendors. […]
The head of the Cybersecurity and Infrastructure Security Agency (CISA) said Wednesday that some of the agency’s key ransomware initiatives have sent out more than 2,000 warnings of vulnerabilities over the last year. […]
Individuals and teams from the U.S. military service branches took home top prizes in the fifth annual President’s Cup Cybersecurity Competition organized by the Cybersecurity and Infrastructure Security Agency (CISA), CISA announced on April 19. […]
Sean Connelly, who has been long been a prime mover on zero trust and other security policies for the Cybersecurity and Infrastructure Security Agency (CISA), will soon be leaving Federal government service to join cloud security provider Zscaler, the company confirmed to MeriTalk. […]
The Cybersecurity and Infrastructure Security Agency (CISA) publicly issued an emergency directive today calling on Federal agencies to take immediate action to reset authentication credentials following a breach of Microsoft corporate email accounts by Russian state-sponsored cyber actor Midnight Blizzard. […]
The Cybersecurity and Infrastructure Security Agency (CISA) is well on its way to implementing new cloud and IT environments that the agency has been working on for the past two years, a top agency tech official said this week. […]
Matt House, who runs the Cybersecurity and Infrastructure Security Agency’s (CISA) Continuous Diagnostics and Mitigation (CDM) program, previewed today that his office is working on an effort to better explain how the CDM program supports the Federal government’s push toward zero trust security architectures, and specifically the Zero Trust Maturity Model (ZTMM) that CISA last updated in April 2023. […]
The Cybersecurity and Infrastructure Security Agency (CISA) published a new dedicated High-Risk Communities webpage today with a range of cybersecurity resources for civil society organizations and other high-risk communities. […]
The Department of Homeland Security’s (DHS) Cybersecurity and Infrastructure Security Agency (CISA) published its long-awaited cyber incident reporting rule today for the Cyber Incident Reporting for Critical Infrastructure Act (CIRCIA), requesting public input on the forthcoming regulations. […]
In response to the evolving threat environment, the Cybersecurity and Infrastructure Security Agency (CISA) is looking to better coordinate cybersecurity operations across the Federal government through a newly released Federal Operational Cyber Alignment Plan, or FOCAL. […]
The Cybersecurity and Infrastructure Security Agency (CISA) announced on March 18 the availability of the Repository for Software Attestation and Artifacts that software developers can use to share software attestation forms and relevant artifacts. […]
The Cybersecurity and Infrastructure Security Agency (CISA) has released new guidance to help deal with identity management capabilities when transitioning from on-premises enterprise networks to cloud-based solutions. […]
The Biden-Harris administration approved a secure software development attestation form on Monday, taking a crucial step towards ensuring Federal contractors provide secure products to the Federal government. […]