Legislation moving through Congress would expand the cybersecurity mission of the National Institute of Standards and Technology and NIST's new director, Patrick Gallagher, says bring it on.
One of the objectives of FISMA reform is to promote real-time metrics to determine IT security, but NIST senior scientist Ron Ross discusses new guidance he co-authored that achieves some of the goals without the need of legislation.
OMB mulls implementing new metrics as part of the reporting processes by federal agencies required under FISMA that would involve, for the first time, real-time measurements to determine the security of IT assets.
Serious flaws significantly negate the benefit of $182 million spent on IT security and the efforts of the 677 employees and contractors fully devoted to information security across the department, the IG said.
Called CyberScope, the new tool is aimed at helping agencies to fulfill their IT security reporting requirements under the Federal Information Security Management Act.
The chairman of the Senate Homeland Security and Governmental Affairs Committee also seeks to boost the role DHS plays in securing the federal and vital privately owned IT systems and networks.
Federal CIO Kundra tells Senate panel he was shocked to learn OMB didn't collect specific agency IT security expenditures. Chairman Carper estimates annual C&A compliance costs taxpayers $2 billion.
In 2002, Congress passed the E-Government Act, containing the Federal Information Security Management Act (FISMA). This law requires federal agencies - and the foundations, educational institutions, and organizations that receive federal funds to develop, document, and implement information security programs to...
Drafts of both measures are in flux, yet find common ground on requiring real-time metrics to verify safety of IT assets and pre-configured security controls on purchased technology.
Congress should consider enacting legislation allowing the government to regulate how the private sector handles and stores data to battle the growing problem of data breaches, Rep. Yvette Clarke says.
NIST IT Lab Director Cita Furlani says the agency is ready to answer the call to develop new ways to measure IT security as Congress moves toward changing the way to determine the safety of federal information systems.
Complying with the provisions of FISMA, which include NIST standards and guidelines, will by definition make government IT systems more secure, says NIST senior computer scientist Ron Ross.
Interview with Cita Furlani, NIST Information Technology Laboratory Director
Think of the National Institute of Standards and Technology, and most people charged with safeguarding government IT assets think of NIST's information security guidance. But NIST's core strength lies in its long history of measurement and...
Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing govinfosecurity.com, you agree to our use of cookies.
