Cybersecurity

Census taps Mandiant for cyber assessment

Shutterstock image. Copyright: Michele Paccione.

The Census Bureau wants its computer networks assessed for indicators of compromise to determine steps needed to secure and prevent potential breaches, and has awarded a contract for the evaluation.

The bureau, which plans to employ an unprecedented scale of technology for its 2020 operation, has selected Mandiant on a sole source basis to conduct a cybersecurity assessment.

As the principal source of population, economic and demographic statistics, the census possesses sensitive personal information of respondents, and the theft of that information could negatively impact citizens' willingness to participate in future enumerations.

Mandiant, a FireEye subsidiary primarily focused on cyber forensics and incident response, was selected due to its analytical capabilities and unique familiarity with FireEye products.

The Bureau told FCW the independent assessment was part of its annual requirements for continuous monitoring.

"There have been no identified breaches or attempts detected," a bureau spokesperson told FCW via e-mail. "This cyber-security assessment is an annual cyber-security requirement that is conducted for information systems. It is unrelated to the 2020 Census." 

The statement of work outlines the requirements of the contract. 

Mandiant, using its own personnel, equipment and resources, will conduct a two-pronged compromise assessment of the Census Bureau's computer systems.

The assessment will analyze the bureau's network traffic and host systems for potential points of vulnerability, inspect each computer system for any indicators of compromise and report progress and findings through daily status reports.

At the conclusion of its assessment, Mandiant will be required to issue an executive summary of actions taken, a remediation plan consisting of short- and long-term recommendations, as well as lists and investigative reports detailing any incidents found to have taken place.

The monetary value of the contract -- a one-year, fixed-price deal that goes into effect Sept. 1 -- was not disclosed.

Additionally on the cybersecurity front, the bureau announced it is looking to hire a chief information security officer, and is accepting applications through  Sept. 2. The senior executive service job pays up to $185,100.


About the Author

Chase Gunter is a staff writer covering civilian agencies, workforce issues, health IT, open data and innovation.

Prior to joining FCW, Gunter reported for the C-Ville Weekly in Charlottesville, Va., and served as a college sports beat writer for the South Boston (Va.) News and Record. He started at FCW as an editorial fellow before joining the team full-time as a reporter.

Gunter is a graduate of the University of Virginia, where his emphases were English, history and media studies.

Click here for previous articles by Gunter, or connect with him on Twitter: @WChaseGunter

Featured

  • Telecommunications
    Stock photo ID: 658810513 By asharkyu

    GSA extends EIS deadline to 2023

    Agencies are getting up to three more years on existing telecom contracts before having to shift to the $50 billion Enterprise Infrastructure Solutions vehicle.

  • Workforce
    Shutterstock image ID: 569172169 By Zenzen

    OMB looks to retrain feds to fill cyber needs

    The federal government is taking steps to fill high-demand, skills-gap positions in tech by retraining employees already working within agencies without a cyber or IT background.

  • Acquisition
    GSA Headquarters (Photo by Rena Schild/Shutterstock)

    GSA to consolidate multiple award schedules

    The General Services Administration plans to consolidate dozens of its buying schedules across product areas including IT and services to reduce duplication.

Stay Connected

FCW Update

Sign up for our newsletter.

I agree to this site's Privacy Policy.