CISA

One common refrain for securing information and communication technology (ICT) supply chains is to focus on acquisition and supplier visibility. According to top IT leaders at a FCW workshop this week, federal entities seeking to secure their ICT supply chains have a knowledge problem.

Legislators are calling for Congress to push IT modernization efforts across federal agencies following the 2020 spike in cybercrime due to the COVID-19 pandemic.

In a new blog post, SolarWinds said the company first noticed “suspicious activity” on its Orion platform in September 2019 — more than a year before discovering the malicious code now referred to as SUNBURST, which induced the December 2020 cyberattack.

President-elect Joe Biden proposed a $9 billion investment in the Technology Modernization Fund and support for cybersecurity and improved IT assets across federal agencies as part of his $1.9 trillion economic package released Thursday night.

The Cybersecurity Infrastructure and Security Agency released new TIC 3.0 remote user case guidance to help federal agencies secure their networks in a teleworking environment.

The National Institute of Standards and Technology (NIST) recommends security and IT professionals deploy a zero trust strategy and continuous monitoring to optimize cloud security, according to a new report.

The COVID-19 pandemic-induced telework prompted federal agencies to build off TIC 3.0 guidance and explore zero trust to maximize network security.

The Cyber Unified Coordination Group, an effort between the U.S. intelligence community and the Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency (CISA), is in the midst of coordinating its response to the recent discovery of a major hacking incident across various agencies last week.

The Cybersecurity and Infrastructure Security Agency's guidelines on information and communications technology (ICT) supply chain risk management (SCRM) are necessary to preventing such breaches like the one seen last week.

The COVID-19 pandemic exposed vulnerabilities in information and communication technology (ICT) supply chains once considered industry best practices.

Supply chain security can barely keep up with the breakneck pace of technological innovation and COVID-19 demands, federal IT leaders said at an ACT-IAC Emerging Technology Forum.

Automating the authorization to operate (ATO) process could save federal agencies time and also enhance IT infrastructure security.