The state of New York is emphasizing improving its IT resilience. The state’s 2022-23 strategic plan focuses on moving off legacy systems, implementing an enterprise architecture, and improving service delivery to its residents, to name a few. In addition, the state has its first cybersecurity strategy, and created a Joint Security Operations Center. As the largest city in the United States, New York City has its own technology roadmap,...

Whether it’s a hurricane, fire, insider threat or outdated systems, disaster can strike at any point for a government agency. However, even in times of crisis the government’s mission remains. Agencies need a robust business continuity and disaster recovery plan to ensure that vital government services are still working. But keeping those systems running isn’t as simple as having a backup drive somewhere. Instead, agencies ne...

The lineup for GSA’s FAST 2024 “Emerging Innovation and Trends” conference is filled with experts from across the federal government and industry discussing topics crucial to making your next acquisition a success! Register to learn about: How to expedite your acquisition process by using emerging technologies, trending solutions, and best practices GSA’s pricing-control standardization and our automated continuous moni...

It may seem ironic, but government agencies at all levels wrestle with the difficulty of compliance with regulatory requirements even as they issue regulations for others (sometimes including themselves) to meet. For example, just as the healthcare industry follows HIPAA, so too do Veterans Administration hospitals – along with all federal, state, local, tribal and territorial health organizations. Then there are government-only policies...

When FBI Director Christopher Wray speaks publicly about the cyberthreat posed by the Chinese government to U.S. critical infrastructure, it is past time to take the danger seriously. “The PRC [People’s Republic of China] has made it clear that it considers every sector that makes our society run as fair game in its bid to dominate on the world stage, and that its plan is to land low blows against civilian infrastructure to try to...

The continuous evolution of technology presents us with a dynamic landscape filled with both promise and challenges. As the internet gained widespread adoption, it revolutionized various aspects of our lives, introducing innovations such as online shopping and real-time news updates, alongside issues like spam, phishing, and malware. Traditionally, government entities have been cautious in adopting new technologies, often due to regulatory con...

An Overview of CSRS & Different Types of Retirement Types of service used for determining eligibility to retire under CSRS Employee and agency contributions to CSRS Military service and temporary time The CSRS annuity computation Minimum age and service requirements Early retirement and deferred retirement Understanding the Annuity Computation Amount of an annuity Length of service and unused sick leave High-3 average salary Effective date...

Join this event on using the National Institute of Standards and Technology (NIST) approach for creatin a comprehensive on Systems Security Plan (SSP). This overview event is designed to equip participants with the knowledge and skills needed start the process of development and implementation of an effective security plans for federal information systems. Key Topics Covered: Understanding the NIST security standards and guidelines Implementin...

Join us for a highly informative and engaging 1 CPE event, where we will review the world of risk management through the lens of the ISO 31000 standard. This event is designed to provide participants with an overview of the ISO 31000 standard and its significance in the field of risk management. ISO 31000, also known as "Risk Management – Guidelines," is an internationally recognized standard that offers principles, a framework, and a p...

Join us for an insightful event, "Managing Information Security (ISO 27001)", where we will provide an overview of the ISO 27001 standard. This event aims to equip participants with the knowledge and understanding necessary to effectively start improving the management of information security within their organizations. ISO/IEC 27001 is a globally recognized standard for information security management systems (ISMS). It establishes a systema...