Why Modernization Is Key to National Cyber Strategy
The president’s executive order on cybersecurity emphasizes systems modernization and cloud as a first step toward emphasizing protection of data rather than the network itself.
Today’s state of the art in cybersecurity is operational resilience – the ability to keep operating in the midst of a disruptive attack. Tomorrow’s state of the art is what Carnegie Mellon CERT’s Summer Fowler calls “prosillience” – the ability to anticipate and adapt before disruptions strike. Here’s how we’ll get from now to then.
President Trump’s Cyber Executive Order calls for consolidating federal networks into a single architecture. Here’s how three parts of government are already doing just that.
Certifications have become the standard to prove one’s knowledge of a set of skills. According to the 2017 Global Information Security Workforce Study, 73 percent of federal agencies require their IT staff members to hold information security certifications. To stay abreast of rapid technological change, micro certifications, which provide shorter, more focused specialized training on a specific skill set needed for a given job, might be as just effective but less costly and time-consuming.
What We’re Reading
The new administration’s extended transition process has led to an unusual circumstance in which there are literally zero politically-appointed acquisition officials anywhere in the Defense Department. Such a scenario might seem like an unlikely time for DoD to make major changes to the way it buys information technology, but that’s exactly what the career civil servant who’s currently leading the department’s vast acquisition apparatus hopes to do over the next year.
Microsoft has released new patches for Microsoft XP and Server 2003 systems while DHS pointed to an increase in North Korean cyber activity.
The Health and Human Services Department’s cyber threat sharing center hasn’t reached initial operating capacity yet, but a pair of senators already wonder if it’s a redundant effort.
Intelligence drives operations. The same can be said for quick-reaction cyber forces when responding to an incident.
Lt. Gen. Alan Lynn took over as director of the Defense Information Systems Agency in July 2015, assuming leadership of the agency after previously serving as vice director and as chief of staff. He’s also spent time leading Army Network Enterprise Technology Command and Army Signal Center of Excellence, priming him to lead the Defense Department’s mission-critical IT agency.
The Defense Information Systems Agency is undertaking a comprehensive modernization effort for endpoint security.
At least 500 million Yahoo users had their information stolen in 2014, the company said on Thursday — a year when half of American adults had their personal information exposed to hackers. Several more big names have been attacked since.
The Department of Defense announced today that it has awarded a contract to HackerOne and Synack to create a new contract vehicle for DOD components and the services to easily launch their own ‘bug bounty’ challenges, similar to Hack the Pentagon, with the ultimate objective to normalize the crowd-sourced approach to digital defenses.
The Census Bureau will forge ahead with its plans to tally and mark addresses in fiscal 2017 and with its 2018 tests to ensure that new technologies and methodologies are ready for the decennial census in 2020.