Features

Features

Government information security management

• DHS-led agency works to visualize, share cyber-risk information

  A Department of Homeland Security initiative strives to improve cybersecurity information sharing between the public and private sector, but familiar challenges remain.  Continue Reading

• CISOs take notice as GPS vulnerabilities raise alarms

  GPS has been extraordinarily reliable, but there's a growing chorus of experts who say it's time to assess GPS security and consider protective strategies.  Continue Reading

• Valerie Plame: U.S. government cyberdefense must be improved

  Former CIA officer Valerie Plame discusses why America's cyberdefense is lagging behind -- and what the government and private sector should do to reverse the trend.  Continue Reading

• Federal Cloud Computing

  In this excerpt from chapter three of Federal Cloud Computing, author Matthew Metheny discusses open source software and its use in the U.S. federal government.  Continue Reading

• Q&A: Looking at cyberweapons and other issues with Nathaniel Gleicher

  The former White House cybersecurity policy director talks about cyberthreats, the government's vulnerability equities process and lawful use of exploit toolkits.  Continue Reading

• Can cybersecurity spending protect the U.S. government?

  CNAP articulates the right things, as many U.S. government cyber initiatives do, but what has captured the attention of the Beltway is the billion-dollar budget proposals.  Continue Reading

• FISMA Compliance Handbook

  In this excerpt from chapter 3 of the FISMA Compliance Handbook, author Laura P. Taylor discusses the five methodologies that agencies use as a basis to carry out FISMA compliance.  Continue Reading

• FISMA Compliance and the Evolution to Continuous Monitoring

  The U.S. Department of State developed a system for improving federal cybersecurity.  Continue Reading

• Feds: Electronic health records privacy will require metadata scheme

  For the first time, the government is propounding a conceptual framework for securing electronic health records.  Continue Reading

• PING with Jane Scott Norris

  In an interview with Information Security magazine, Jane Scott Norris, Department of State's first CISO, offers some insight on what it takes to become a CISO.  Continue Reading

• Making sense of the maze

  The program director of regulatory compliance for the Object Management Group discusses a new project known as Compliance Global Regulatory Information Database, which should help businesses manage regulatory compliance demands across international ...  Continue Reading

• Best practices in Internet security: The Access Certificates for Electronic Services Program

  The Access Certificates for Electronic Services Program (ACES) brings multiple PKI service providers together into an interoperable public key infrastructure (PKI) for use by government entitites and the private sector.  Continue Reading

• Ensure that legal responsibilities are clear -- Especially when trouble strikes

  Excerpt from Chapter 15 of Information Nation Warrior: Information Management Compliance Boot Camp.  Continue Reading

• Robby Ann Hamlin

   Continue Reading

• ID theft and national security

  Check out what some ITKnowledge Exchange members had to say about this controversial issue.  Continue Reading