It's a scene out of the movies: a team of hackers attacking key federal IT systems, creating havoc, with defenders countering to keep the computers up and running.
Forthcoming reforms to the Federal Information Security Management Act of 2002 are said to improve federal coordination of IT security efforts and provide for greater situational awareness of security threats.
Securing information is hard work, but combining accountability, best practices and a bit of common sense while meeting your agency's mission will go a long way to provide proper IT safeguards.
Legislation reforming the Financial Information Security Management Act could be introduced within weeks, says bill co-sponsor Sen. Tom Carper, the Delaware Democrat who chairs the subcommittee that provides oversight on federal government information security. "We're going to introduce the legislation by the spring,"...
Federal agencies want to employ cloud computing technology, but are hesitant because of information security concerns and existing government compliance regulations.
"Cloud computing is of great interest to the U.S. government, and it's seen as a great opportunity to promote efficiencies, but there is not...
With the launch of GovInfoSecurity.com comes the launch of my blog, The Public Eye.
First, a brief biography. I've been a journalist for too long. In my first job I used a manual typewriter and had a pair of sharp scissors and a paste pot on my desk.
A sense permeates across the capital that major changes will soon occur on how the federal government secures its information systems.
As Congress revs up to reform information security processes for the first time in seven years, and the Obama administration is weeks into a 60-day review of cybersecurity policy,...
Reform legislation is expected to be introduced this spring to update the Federal Information Security and Management Act, known as FISMA. A major complaint about FISMA is that complying with its rules does not necessarily guarantee departmental and agency information systems are secure.
In this exclusive interview,...
Tom Davis wrote the original Federal Information Security Management Act in 2002, and says the legislation has served the government and nation well. The one-time powerful chairman of the House Government Reform Committee, which provides oversight on information technology matters, feels it's time for Congress to...
When Congress enacts and President Obama signs legislation to reform the Federal Information Security Act, perhaps as early as this year, the National Institute of Standards and Technology (NIST) will be charged to develop new metrics federal agencies must follow to assure government information systems are secure.
A big complaint about the Federal Information Security Management Act (FISMA) is that agencies complying with its provisions merely prove they're following processes aimed at securing information systems, but they don't necessarily prove the systems are indeed secure.
In an exclusive interview, Ron Ross, the...
The Obama administration is looking to develop metrics that would require agencies to continuously monitor the security of their information systems, moving beyond the quarterly and annual reporting required by the Federal Information Security Management Act.
Tom Davis wrote the original Federal Information Security Management Act in 2002, and says the legislation has served the government and nation well. The one-time powerful chairman of the House Government Reform Committee, which provides oversight on information technology matters, feels it's time for Congress to...
The most overused phrase uttered by Government Accountability Office auditors when assessing compliance or the lack thereof by federal agencies is: "progress has been made, but...." The "but" shows how little progress really has been achieved.
Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing govinfosecurity.com, you agree to our use of cookies.