Government information security management

Government IT security management news and analysis covering information security in the federal government and its agencies as well as state and local governments, national initiatives to secure cyberspace, public-private cooperation and the government's role in helping enterprises protect the data of U.S. citizens.

August 26, 2021 26 Aug'21
Private sectors pledge big for cyberdefense

Tech giants have invested billions to address cybersecurity threats such as supply chain security and attacks on critical infrastructures.
August 19, 2021 19 Aug'21
CISA offers ransomware response guidelines to organizations

In its new ransomware prevention and response guide, CISA 'strongly discourages paying a ransom,' citing the potential to embolden threat actors and fund illicit activity.
August 05, 2021 05 Aug'21
CISA director announces 'Joint Cyber Defense Collaborative'

The Joint Cyber Defense Collaborative, or JCDC, is a partnership between the public and private sectors to create and implement comprehensive national cybersecurity plans.
July 22, 2021 22 Jul'21
US Senate mulling bill on data breach notifications

The Senate Intelligence Committee introduced a bill that would require federal agencies and companies providing critical infrastructure to report network breaches to DHS.

Bring yourself up to speed with our introductory content

How to find ransomware cyber insurance coverage in 2021

It's harder to buy cyber insurance coverage for ransomware attacks in 2021. Our expert reviews what to look for in a policy, how to qualify and how to get the most out of it. Continue Reading
How to use the NIST framework for cloud security

Aligning the NIST Cybersecurity Framework with cloud services such as AWS, Azure and Google Cloud can improve cloud security. Read how to best use the framework for the cloud. Continue Reading
National Security Agency (NSA)

The National Security Agency (NSA) is a federal government intelligence agency that is part of the United States Department of Defense and is managed under the authority of the director of national intelligence (DNI). Continue Reading

Weigh the pros and cons of technologies, products and projects you are considering.

Can a new DHS cybersecurity strategy help the private sector?

The U.S. Department of Homeland Security outlines federal plans to improve public and private cybersecurity, but analysts advise caution over strategies that can't be mandated. Continue Reading
Federal technology upgrade could see security, SaaS outlay

Channel partners expect major shifts in the government's technology priorities. Find out which IT trends are poised to shape spending in the coming years. Continue Reading
Technology a double-edged sword for U.S. election security

Technologies were weaponized to undermine the 2020 U.S. presidential election, but IT systems have also helped to identify fraud and verify results in a hotly contested election. Continue Reading

Learn to apply best practices and optimize your operations.

Cybersecurity training for employees: The why and how

Cybersecurity training continues to miss the mark. How do you succeed where so many others have failed? Keep it fresh, keep it current and make it real. Here's how. Continue Reading
Federal Information Security Management Act (FISMA)

The Federal Information Security Management Act (FISMA) is United States legislation that defines a framework of guidelines and security standards to protect government information, operations and assets. Continue Reading
Tackling IT security awareness training with a county CISO

A Michigan county CISO says government workers are under siege by cybercriminals. In this case study, he shares how his IT security awareness training strategy has evolved. Continue Reading

We’ve gathered up expert advice and tips from professionals like you so that the answers you need are always available.

Interconnected critical infrastructure increases cybersecurity risk

Separately managed but interconnected critical infrastructure sectors are not all bound to security requirements and may be at risk of cascading attacks. Continue Reading
How to create a ransomware incident response plan

The increase in recent attacks makes clear the need for a ransomware incident response plan. Here's how to limit the effect of such attacks, as well as what to do if infected. Continue Reading
With US ban, Huawei products put CISOs on notice

The U.S. federal government has enacted bans on equipment it deems a national security risk. The move should make CISOs wary of what products they bring into their organizations. Continue Reading