Saturday, July 31, 2021

Subscribers Only

Free

DHS Advisory Group Approves Data Breach Notification Best Practices

The Department of Homeland Security’s Data Privacy and Integrity Advisory Committee has approved a set of best practices for DHS agencies to use when notifying employees, citizens, or other users about a data breach that has affected their personal information. An earlier draft of the guidance urged agencies to provide notice of a breach quickly, […]
Must be a Paid Member or a Free Trial Member to Access Content. Members log in here.

Members of Congress Ask for Telework Vulnerability Audits

Democratic leaders of the House Oversight and Reform Committee and its subcommittees have written to 10 agency inspectors general, asking for audits of “any vulnerabilities created or exacerbated by the department’s use of remote-access software to facilitate telework during the coronavirus pandemic, and whether any such vulnerabilities were effectively mitigated.” These are to be included […]
Must be a Paid Member or a Free Trial Member to Access Content. Members log in here.

White House Threatens to Veto House-Passed Election Security Bill

The Stopping Harmful Interference in Elections for a Lasting Democracy Act (SHIELD Act) has cleared the House. It would require political campaigns and committees to report offers of campaign assistance from foreign powers to the FBI and law enforcement entities. It would also amend the Federal Election Campaign Act to clamp down on campaign spending […]
Must be a Paid Member or a Free Trial Member to Access Content. Members log in here.

Cybersecurity Agencies Warn of High-Severity OpenSSL Vulnerability

Cybersecurity agencies around the world – including the U.S. Cybersecurity and Infrastructure Security Agency – have released alerts about a denial-of-service vulnerability affecting OpenSSL, and vendors are assessing its impact on their products. OpenSSL 1.1.1i fixes a high-severity vulnerability – a NULL pointer dereference issue – that can be exploited for remote DoS attacks on […]
Must be a Paid Member or a Free Trial Member to Access Content. Members log in here.

National Cyber Strategy Emphasizes Private Sector’s Shared Responsibility for Cyberspace

On September 20, 2018, the White House released the long-awaited National Cyber Strategy. The Strategy builds off of Executive Order 13800 “Strengthening the Cybersecurity of Federal Networks and Critical Infrastructure” and the National Security Strategy, which was heavily focused on cyber issues. While a major policy shift includes enabling offensive cyber measures as a means […]
Must be a Paid Member or a Free Trial Member to Access Content. Members log in here.

Pending U.S. Supreme Court Cases May Restrict FTC’s Pursuit of Monetary Relief in Privacy...

The Supreme Court has agreed to hear a pair of cases that provide it with the opportunity to severely restrict the Federal Trade Commission’s authority to obtain equitable money relief in consumer protection enforcement actions, including privacy and cybersecurity matters. Under the FTC Act, in certain circumstances the FTC is empowered to bring actions in […]
Must be a Paid Member or a Free Trial Member to Access Content. Members log in here.

Start Preparing Now for DoD’s Upcoming Cybersecurity Maturity Model Certification (CMMC)

For a while now, we have been writing about the increasing impact of cybersecurity on the government contracting world, which, as Jon wrote, has become the “fourth pillar” of Department of Defense (DoD or the Agency) acquisitions. The latest evidence of this was discussed by our colleague, Dave Shafer, in his recent blog discussing a new DoD cybersecurity […]
Must be a Paid Member or a Free Trial Member to Access Content. Members log in here.

OPM Wants to Make it Easier to Hire for Tech Jobs

The Office of Personnel Management is considering new ways to make it easier for agencies to hire people for STEM and cybersecurity posts. One idea is to establish a governmentwide direct hire authority for these occupations to help the government better compete with the private sector. This would allow agencies to skip significant portions of […]
Must be a Paid Member or a Free Trial Member to Access Content. Members log in here.

Webinar: Privacy and Data Security for the Generalist In-House Counsel

Foley Hoag will present a webinar on regulatory and contractual obligations regarding privacy and data security, on Wednesday, September 13, 2017, from 12:30 pm – 1:30 pm ET. Specific topics to be covered include: How to identify common data privacy and security issues How to protect your company and its employees from data breaches and their […]
Must be a Paid Member or a Free Trial Member to Access Content. Members log in here.

Government Could Shift to Security-as-a-Service, DHS’s West Says

Barry West, the Department of Homeland Security’s official in charge of risk management, says that an ongoing global shortage of cyber talent could soon push federal agencies to look more often to contracted cybersecurity services rather than try to compete with the private sector in hiring. He cites recent research by Gartner predicting a global […]
Must be a Paid Member or a Free Trial Member to Access Content. Members log in here.