The state of New York is emphasizing improving its IT resilience. The state’s 2022-23 strategic plan focuses on moving off legacy systems, implementing an enterprise architecture, and improving service delivery to its residents, to name a few. In addition, the state has its first cybersecurity strategy, and created a Joint Security Operations Center. As the largest city in the United States, New York City has its own technology roadmap,...

The U.S. Department of Homeland Security is at the forefront of the public sector’s security operations, defending the country’s cyber infrastructure, customs and transportation from internal and external threats. To ensure the agency’s responsibilities are fulfilled and in line with technological modernization, DHS leaders leverage innovative tools to safeguard critical assets and transform citizen services. As the threat la...

Join us for a webinar focused around IT/OT integration for AVEVA PI users. Cyber-Informed Engineering (CIE) is emerging as the most useful change in perspective in Operational Technology (OT) security in a decade. CIE see both engineering approaches and cybersecurity controls as essential to assuring safe, reliable and efficient physical operations. This comes as a surprise to many practitioners, because engineering tools and approaches are n...

In today's digital age, cybersecurity has become a crucial component of our nation's security. The recent cyberattacks on critical infrastructure, federal agencies, and private sector entities have shown us the severe and far-reaching consequences of cyber vulnerabilities. As a result, the Biden-Harris administration has made strengthening cybersecurity a top priority. On May 12, 2021, the Executive Order on Improving the Nation's Cybersecurit...

The internet is an increasingly dangerous place. The FBI warns of Chinese threats to U.S. critical infrastructure, while the National Security Agency releases guidance for strengthening AI system security. Meanwhile, agencies still wrestle with phishing, ransomware and myriad other threats that occur every day. At the same time, government organizations are expected to implement zero trust architectures, improve identity and access management,...

The recent notice of proposed rulemaking for the Cybersecurity Maturity Model Certification (CMMC) program made one thing for certain: the U.S. Department of Defense is serious about external service provider (ESP) security. Under the proposed regulation, U.S. defense contractors will need to pay close attention to their Managed Service Providers (MSPs) and Managed Security Service Providers (MSSPs) who qualify as ESPs to ensure they also ach...

In today’s rapidly evolving technological landscape, government agencies face the daunting task of managing advancements in AI, cybersecurity, and more, while ensuring their workforce remains at the peak of performance. In the realm of agency operations, there are a multitude of challenges that arise, with increasing complexity and declining mental well-being among employees standing out as particularly significant risks to mission succe...

ReversingLabs and Carahsoft are excited to invite you to join us for a virtual, conversation-style webinar to discuss compliance and guidance initiatives that have shaped the federal government's policies on software supply chain security. Hear from Charlie Jones, Director of Product Management, ReversingLabs during this session where we will dive into the following topics: 2023's major federal initiatives for improving software supply chain s...

As federal agencies navigate an ever-evolving landscape of cyber threats, the paradigm is shifting from traditional prevention tactics to prioritizing rapid recovery. This shift underscores the critical role of data protection and swift incident response. In this webcast, we will delve into how federal agencies are harnessing the power of innovative technologies such as artificial intelligence (AI), the internet of things (IoT), and machine le...

Almost every cyberattack today involves the exploitation of privileges. Broad privileges and entitlements greatly expand the attack surface and leave your organization extremely vulnerable to security breaches. However, a least-privilege access approach requires that users and programs receive the least amount of permission when required to complete specific tasks. Least privilege is one of the most essential security measures for organizatio...