FCW Insider

Blog archive

FCW Insider: March 25

The Air Force's agile software delivery shop Kessel Run is turning to industry to expand its developer base. Chase Gunter takes a look at what they're after.

Federal networks managed to escape harm in a DNS tampering campaign, according to a Department of Homeland Security official. Still, a handful of agencies have yet to fully comply with a January emergency directive on two-factor authentication designed to thwart such attacks. Derek B. Johnson has more.

Getting cybersecurity and tech talent into government has been a top management priority spanning multiple administrations. Human resources experts and future feds weighed in at an event last week. Chase was there.

Quick Hits

*** The Federal Emergency Management Agency released sensitive information on 2.3 million disaster survivors in 2017 to a contractor despite policies governing the disclosure of such data. The information released covered survivors of Hurricanes Harvey, Irma and Maria and the California wildfires, and included detailed banking information.

A system for FEMA's Transitional Sheltering Assistance was responsible, according to a report released March 22 by the Department of Homeland Security Inspector General. The program connects disaster survivors with temporary lodging at hotels in order to get people out of emergency shelters.

In reply comments, FEMA said it began work on mitigating this data leak after reviewing a draft version of the OIG report in November 2018. The problem originated in part because the program maintained a requirement to collect bank information even though it was no longer necessary. FEMA indicated that it had stopped sharing certain data elements with its contractor and had rewritten its contract to require certain cybersecurity measures in December 2018 and followed that up with a penetration test in February 2019. According to DHS, that test yielded 11 vulnerabilities, only four of which have been remediated.

*** Sen. Mike Enzi (R-Wyo.), chairman of the Senate Budget Committee, is proposing to freeze budgets on the civilian side of the federal government as part of a plan to lower deficits and reduce the national debt. The five-year resolution would stick to existing budget caps through fiscal year 2021; after that defense spending gets inflation-level increases while non-defense spending would be capped at 2021 levels through 2024. The resolution also calls for an increase in retirement contributions by federal employees.

Posted on Mar 25, 2019 at 1:05 AM


  • Cybersecurity
    Deputy Secretary of Homeland Security Alejandro Mayorkas  (U.S. Coast Guard photo by Petty Officer 3rd Class Lora Ratliff)

    Mayorkas announces cyber 'sprints' on ransomware, ICS, workforce

    The Homeland Security secretary announced a series of focused efforts to address issues around ransomware, critical infrastructure and the agency's workforce that will all be launched in the coming weeks.

  • IT Modernization
    Blue Signage and logo of the U.S. Department of Veterans Affairs

    VA plans 'strategic review' of $16B software program

    New Veterans Affairs chief Denis McDonough announced a "strategic review" of the agency's Electronic Health Record Modernization program of up to 12 weeks.

Stay Connected