DHS Pipes Up Again: Issues Second Directive On Pipeline Security
A second directive issue by TSA in July requires owners and operators of designated critical pipelines to implement specific mitigation measures to protect against...
House Approves Grant Program for State and Local Cybersecurity
The U.S. House of Representatives has approved the State and Local Cybersecurity Improvement Act, which would grant state and local governments $500 million each year for better cybersecurity. The National Association of State Chief Information Officers has identified passage of the bill as one of its top priorities. The grants would require matching funds from […]
Governors Turn to National Guard for Help with Cyber Attacks
As cybersecurity attacks interrupt government services at the state and municipal levels, governors are calling on the National Guard for help. For details on just how often this happening, Federal Drive spoke with Todd Rosenblum, a senior fellow at the center-left think tank Third Way. “As the nation has really seen a dramatic increase in […]
Renewed Focus on Cybersecurity May Have Significant Impacts on Previously Shielded Healthcare Companies
Following President Biden’s cybersecurity executive order, the FDA issued the Response to NIST Workshop and Call for Position Papers on Standards and Guidelines to Enhance Software Supply Chain Security on May 26, 2021, which acknowledges that “cybersecurity is crucial for medical device safety and effectiveness.” However, it is important to recognize that currently, the FDA’s […]
California Attorney General Issues Summary of CCPA Enforcement Actions and Launches Consumer Privacy Interactive...
The California Attorney General recently released a summary of enforcement actions the agency brought against companies in violation of the CCPA since enforcement of the Act began on July 1, 2020. The summary provides 27 illustrative examples of instances in which the AG sent notices of alleged noncompliance with the CCPA and how each company […]
Welcome to the Privacy Party, Ohio: State Legislature Proposes Comprehensive Data Privacy Legislation
California broke new ground when it passed the California Consumer Privacy Act of 2018, now, the rest of the nation is following suit. Since 2018, Virginia and Colorado have passed similar statues. Now, Ohio is ready to join the party. Introduced earlier this month, House Bill 376 “The Ohio Personal Privacy Act,” seeks to bring […]
China’s New Developments in Cybersecurity Review
Recent U.S. IPOs of Chinese companies have prompted data security concerns among Chinese authorities, leading to a tightening of cyber regulations. Cybersecurity review will be mandatory for (i) purchase of network products and services by critical information infrastructure operators that affect or may affect national security, and (ii) data processing activities conducted by data processors […]
DOE Updates its 2012-Vintage Cybersecurity Capability Maturity Model
The Department of Energy has released version 2 its Cybersecurity Capability Maturity Model (C2M2), a tool initially released in 2012 to help companies evaluate...
DoD Group Can Identify Vulnerabilities of Defense Contractors
The Defense Industrial Base Collaborative Information Sharing Environment (DCISE), part of the Defense Cyber Crime Center, is partnering with industry to identify cyber vulnerabilities in the defense industrial base. Federal Drive spoke in more detail with DCISE chief Mike Weiskopff. “We take open source information, information that anybody can acquire, to include the adversary and […]
Congress Working on a Variety of Cybersecurity Bills
Several cybersecurity-related bills are making their way through the U.S. House of Representatives and/or Senate. The House Energy and Commerce Committee has approved eight bills that focus in various ways on the cybersecurity of mobile telecom networks: Understanding Cybersecurity of Mobile Networks Act – Calls for a congressional report on cybersecurity of mobile service networks. […]