Registration Closed The new Presidential Executive Order has increased emphasis on advancing toward “Zero-Trust Architecture” and “Endpoint Detection and Response (EDR)”, and moving systems to FedRAMP clouds. Additionally, NIST has released the finals of many Risk Management Framework (RMF) standards (SP800-53 Rev 5 – Security Controls, SP800-53B – Security Control Baselines, Privacy Framework, SP800-160 Vol...

The Federal Information Security Modernization Act (FISMA) codifies the Department of Homeland Security's role in administering the implementation of information security policies created by NIST in order to secure federal information system security. 2021 brought many changes to Federal Cybersecurity requirements that will impact FISMA compliance—and affect government and contractor information systems and enterprises. Specifically, NIS...

Cyber security policies have an avowed goal of improving cyber hygiene in the workforce. But outside of recommending a few best practices, such as asking people to use complex passwords, few government or private sector entities know what actions ensure cyber hygiene. The most widely applied solution remains security awareness training involving simulated phishing attacks in conjunction with some education to assess user readiness. But there i...

OVERVIEW By the beginning of 2021, NIST will have released the finals of many Risk Management Framework (RMF) standards: SP800-53 Rev 5 – Security Controls SP800-53B – Security Control Baselines, Privacy Framework SP800-160 Vol 2 – Systems Security Engineering SP800-161 Rev 1 – Supply Chain Risk Management SP800-171 Rev 2 – Controlled Unclassified Information (CUI) and High Valued Assets (HVA) Revisions to the NIS...

COVID-19 forced Federal agencies to quickly respond to an explosive global crisis, while protecting their employees and serving constituents, all without face-to-face interaction. The government’s massive response effort resulted in a rapid, transformative impact on the workforce. Now that agencies have had a chance to refocus their response efforts from triage to recovery, one thing remains clear — agency operations and employee e...

As a follow-up to Digital Government Institute’s popular Cyber Security Conference held each May, government IT security professionals will once again gather in August to network and continue the dialog about today’s cyber threats. The Cyber & IT Security Conference is co-located with the 6th annual 930gov Conference, Tradeshow & Training Symposium. 930gov is a fiscal year-end strategy exchange bringing together Government...

The Continuous Diagnostics and Mitigation (CDM) Program is evolving to better secure government networks and systems. The CDM Program provides Federal Agencies with the capabilities, tools and ability to identify cybersecurity risks on an ongoing basis, prioritize these risks, and enable cybersecurity personnel to mitigate the most significant problems first. CDM exists to improve government network security through delivery of comprehensive s...

Data security threats continue to increase in number and sophistication. The growing use of collaborative technologies – from mobile devices and social media to virtualization and cloud computing – will continue to be one of the most significant factors impacting the security landscape. For these reasons, the federal government has increased efforts to minimize and prevent cyber security attacks, and will continue to place signific...

If you work for a Federal Agency, the Military, or supporting contractor organization, this 2-day non-technical training seminar will cover all the recently released Cyber Policy and Regulations covering the concepts, processes, solutions, templates, and strategies to help you meet all the FISMA and related cybersecurity requirements. In May 11, 2017, Presidential Executive Order (PEO) on Strengthening the Cybersecurity of Federal Networks and...

As a follow-up to Digital Government Institute’s popular Cyber Security Conference held each May, government IT security professionals will once again gather in September to network and continue the dialog about today’s cyber threats. The Cyber & IT Security Conference is co-located with the 5th annual 930gov Conference, Tradeshow & Training Symposium. 930gov is a fiscal year-end strategy exchange bringing together Governme...