Crisis situations like this one can induce the fog-of-war and lead to tradeoffs during remediation. While we may not know the full extent of the damage for some time, as is always the case in an event like this, we need to stop the bleeding. We must not afford the adversary an easy path to more information.
The passage of the IoT Cybersecurity Improvement Act of 2020 means that NIST will start to address the gap in post-market guidance to help organizations adequately address newly discovered vulnerabilities in devices already on their networks.
The time has come for Congress to regulate security in the software industry by mandating minimal best practices for software companies selling software products or services in America.
Agencies can use data to identify and assemble information on candidates' and employees' experiences to better understand how people perceive them as an employer, as well as how to potentially streamline outdated processes.
We have now advanced past that initial disruption brought about by the COVID-19 pandemic, and agencies and organizations should ask themselves: how can we make our supply chains better for the long term, and how do we continue to improve work-from-home security?
To effectively deliver a 21st century experience, agencies must prioritize modernizing digital call centers with these emerging technologies.
It's time to start talking about the next steps we need to take to ensure that our IT infrastructure and tools can continue to support the remote workers, while providing state-of-the-art, timely customer service
The bipartisan Pandemic Federal Telework Act would make technology and security an integral part of telework planning and data reporting.
COVID-19 has shown the importance of the extensibility and scalability of the cloud and has been a forcing factor, expediting modernization initiatives – including security modernization.
While the goal of Cybersecurity Maturity Model Certification is to establish a unified standard for cybersecurity practices across the DOD, it does not directly address specific control expectations or risks associated with organization-specific threat actors.
Investing in IT modernization is not an either-or proposition, Rep. Connolly writes. This pandemic has presented Congress a choice: We can put our head in the sand and pretend these failures didn't happen, or we can take action to be prepared for the future.
Taxpayer money spent on the response to the pandemic should be targeted and temporary, with significant transparency and accountability, and should not include a proposed $1 billion addition to the Technology Modernization Fund.