Homeland Security

DHS scales up bug bounty program

Department of Homeland Security Secretary Alejandro Mayorkas announced a plan to pay vetted cybersecurity researchers between $500 and $5,000 for identifying cybersecurity vulnerabilities within agency systems.

DHS gets nearly 2,000 applications for new cyber cadre

The goal is for DHS to onboard the first 150 feds into the system next year.

New cyber talent system, years in the making, goes into effect at DHS

Agency officials estimate that around 1,000 of its 1,500 cyber vacancies could fit into the new scheme.

CISA orders civilian agencies to fix known flaws in six months

The binding operational directive issued Nov. 3 requires federal agencies to remediate known exploited vulnerabilities on their networks under specific timeframes is also intended to serve as guidance for the private sector and state and local governments.

Zero-trust has a branding problem

A zero-trust approach to cybersecurity is intended to increase vigilance and minimize risk, but without the necessary context, the concept could raise discomfort or even hostility among federal workers.

Senate Republicans seek IG probe of TSA pipeline directives

Republican leaders on the Senate Homeland Security and Governmental Affairs Committee are calling for an inspector general probe into how the Transportation Security Administration developed its first ever pipeline-specific security directives.

Lawmakers examine TSA's growing role in cyber

Lawmakers on the Homeland Security Committee convened cybersecurity experts and key stakeholders from the transportation industry to discuss new rules in the works for the transportation sector.

Senate funding bill zeros out TMF

It's a familiar story: The House looks to add to the Technology Modernization Fund while the Senate taps the brakes

CISA seeks 24-hour timeline for cyber incident reporting

Two separate Senate bills set different deadlines for federal contractors, critical infrastructure providers and other covered companies to report cyber incidents to the federal government.

General Dynamics challenges rival's $2.7B cloud migration win

An incumbent on a key Homeland Security data center contract says it should have been the one to manage the migration to a hybrid environment.

The growing importance of GWACs

One of the government's most popular methods for buying emerging technologies and critical IT services faces significant challenges in an ever-changing marketplace

Clarke stresses cooperation as momentum builds on Capitol Hill behind breach disclosure legislation

Rep. Yvette Clarke (D-NY), chair of the Cybersecurity, Infrastructure Protection and Innovation subcommittee, said building trust with critical infrastructure entities was fundamental to expanding information sharing between the public and private sectors.

IT, supply chain figure in agency climate plans

Federal agencies release climate adaptation and resilience plans, many of which feature new initiatives to combat current and future risks to critical infrastructure and information technology.

White House looks to step up endpoint monitoring

The Biden administration is requiring agencies to provide visibility into their endpoint detection and response efforts as part of the cybersecurity executive order.

CISA chief looks to new system to attract cyber talent

Despite increasing competition among the public and private sectors in hiring top cyber talent, CISA Director Jen Easterly said she has high hopes for a new personnel management system which reduces friction in hiring and offers new career paths.

DHS adds cyber requirements for transportation industry

The Transportation Security Agency and the Coast Guard are getting increased authority over industry cybersecurity.

Bipartisan FISMA update drops

Leaders of the Senate Homeland Security and Government Affairs Committee introduced legislation on Monday to update the Federal Information Security Modernization Act to clarify the role of CISA in defending federal networks.