Donna Dodson, Chief Cybersecurity Advisor for the IT Laboratory at the National Institute of Standards and Technology (NIST), reflected today on the success of the agency’s cybersecurity framework and its contributions to cyber interoperability. […]
While the Department of Homeland Security has been effective in strengthening Federal cybersecurity generally, the agency needs to push harder on agencies to follow through on its security directives, the Government Accountability Office said in a new report. […]
The National Institute of Standards and Technology (NIST) is seeking public comment on the Feb. 4 draft of its cyber supply chain risk management guidance. […]
The National Institute of Standards and Technology filed a Federal Register Notice seeking vendors and tech experts to assist with two cybersecurity projects the agency is preparing through its National Cybersecurity Center of Excellence (NCCoE). […]
The National Institute of Standards and Technology’s (NIST) National Cybersecurity Center of Excellence (NCCoE) released two draft guides on data management and protection in the wake of cyberthreats. […]
The Jan. 31 public comment date is fast approaching for the Cybersecurity and Infrastructure Security Agency’s (CISA) draft guidance documents for version 3.0 of its Trusted Internet Connections (TIC) initiative. […]
A National Institute of Standards and Technology (NIST) draft report on a new program to standardized and centralize cybersecurity regulations is now open for public comment. […]
The National Institute of Standards and Technology (NIST) has published the definitive version of its privacy risk management framework, after seeking comment on a draft version of the framework last year. […]
The National Institute of Standards and Technology (NIST) wants to make it easier for grantees and contractors to report on Federally-funded technological inventions through updating the Interagency Edison System (iEdison). […]
A new study by the National Institute of Standards and Technology (NIST) revealed that data, algorithms, and application processes are the biggest determinants of facial recognition software’s ability to identify sex, age, and racial background. […]
The National Cybersecurity Center of Excellence (NCoE) and National Institute of Standards and Technology (NIST) are seeking comments for a new project to improve supply chain security. […]
The Senate Commerce, Science, and Transportation Committee approved by voice vote today the Harvesting American Cybersecurity Knowledge through Education Act (HACKED Act) (S 2775), which aims to boost the Federal cybersecurity workforce with new guidelines for agencies, clearer career paths for the workforce, and improved coordination between agencies. […]
Officials from the National Institute of Standards and Technology (NIST) and the Department of Defense (DoD) previewed their agencies’ latest efforts on supply chain security guidelines at the CyberCon 2019 conference today. […]
A new bill backed by a bipartisan group of leaders on the Senate Commerce, Science, and Transportation Committee aims to boost the Federal cybersecurity workforce with new guidelines for agencies, clearer career paths for the workforce, and improved coordination between agencies. […]
The National Institute of Standards and Technology (NIST) is looking to update the techniques used to generate digital signatures under FIPS 186-5 and is seeking public comment, as noted in an upcoming Federal Register post. […]
The National Institute of Standards and Technology (NIST) is tackling managed service provider (MSPs) cybersecurity by developing a customizable reference model that MSPs can adapt to fit their program needs. […]
The National Institute of Standards and Technology (NIST) is looking to test security platforms and architectures to secure Internet of Things (IoT) devices from cyberattacks in the energy sector, according to an upcoming Federal Register notice. […]
The National Institute of Standards and Technology (NIST), in collaboration with the Federal CIO Council’s architecture subgroup, released a draft report on zero-trust architectures and the use cases and deployment models where zero-trust can improve cybersecurity. […]
Federal cyber officials from the Office of Management and Budget (OMB), National Institute of Standards and Technology (NIST), and the Cybersecurity of Infrastructure Security Agency (CISA) highlighted today that IT modernization and implementing OMB’s guidance are some of their biggest priorities. […]
Employees who stop working before their termination date or take vacation days prior to their separation date can bring risk to an agency if their access to agency systems isn’t removed in a timely manner, according to a report from the Tennessee Valley Authority’s (TVA’s) inspector general, released September 11. […]
The National Institute of Standards and Technology (NIST) released a draft version of its Privacy Framework in a notice on the Federal Register today, making some changes from the discussion draft released this spring and moving closer to the final version. […]
Federal and Defense officials spoke at today’s Billington Cybersecurity Summit about procurement cybersecurity challenges they face and the initiatives they’ve launched to combat those hurdles by shifting toward a “security first” approach to acquisition and supply chain management. […]
A project under development at the National Institute of Standards and Technology (NIST) is aiming to fully automate FedRAMP (Federal Risk and Authorization Management Program) and enable interoperable automation for cloud service providers (CSPs). […]
The National Institute of Standards and Technology (NIST) has released draft two of Special Publication (SP) 800-160 Volume 2: Developing Cyber Resilient Systems. NIST Is seeking public comments on the draft through Nov. 1. […]
The National Institute of Standards and Technology (NIST) is looking for industry to participate in its efforts to develop a secure architecture for telehealth deployments outside of healthcare facilities, according to an upcoming Federal Register notice. […]
The National Institute of Standards and Technology (NIST) will be releasing the second volume of an engineering-based guidance that aims at assisting organizations with Advanced Persistent Threats (APT) on September 5, 2019. […]
The National Institute of Standards and Technology (NIST) announced on Aug. 16 that it will delay action on several cybersecurity-related standards. […]
The National Institute of Standards and Technology (NIST) released a plan on Aug. 10 to prioritize Federal agency engagement in developing standards for artificial intelligence (AI), just before the deadline of an executive order issued in February that gave the agency 180 days to develop a plan. […]
The National Institute for Standards and Technology (NIST) released a draft interagency report to establish a core baseline guide for cybersecurity that manufacturers may adopt for Internet of Things (IoT) devices they produce. […]
Most government agencies have met Federal mandates to establish cyber risk executives and establish policies to make risk-based decisions on cybersecurity, but many agencies still need to establish cyber risk strategies, conduct risk assessments, and address gaps in existing risk management policies, according to a Government Accountability Office (GAO) report released July 26. […]