Some lawmakers are growing impatient waiting for President Biden to nominate someone to fill the position of national cyber director, which was created in the FY2021 NDAA with bipartisan support. The White House has said that it is still organizing the office this person will lead. Senator Angus King (I-ME), whose commission recommended creating the office, […]
In the dynamic world of Homeland Security, planning for and maintaining the right workforce presents a major imperative. For some insight and how they do it, Federal Drive spoke with Kimya Lee, the Executive Director of Strategic Workforce Planning and Analysis at the Department of Homeland Security. Source: Federal News Network: DHS Using Data Literacy, […]
The hackers behind the massive breach of SolarWinds' Orion software were able to access the email accounts of top officials at the Department of...
CISA acting director Brandon Wales says that the list of victims from the attack on SolarWinds Orion and Microsoft Office 365 users has solidified, and that the agency is not expecting many more targets to come forward. A reported nine federal agencies and roughly 100 private companies were victimized. Wales acknowledged that the list of […]
House Homeland Security Committee Ranking Member John Katko (R-NY) says that CISA should play “quarterback” for cybersecurity in the federal government, and therefore be funded accordingly. Katko said the agency needs “a lot more money” and “a lot more resources” to meet its mission, and that he could easily see Congress giving CISA a $5 […]
Acting CISA director Brandon Wales, says that the government will be establishing new security standards for providers of its IT in the coming weeks....
The Cybersecurity and Infrastructure Security Agency was granted specific subpoena powers by the 2021 NDAA, empowering it to compel internet service providers to supply the identity of their customers, so officials can warn them about vulnerabilities in their systems. Acting director Brandon Wales says they plan to begin exercising this authority in about two months, […]
Brandon Wales, acting director of CISA, concedes that the EINSTEIN system that guards federal networks from intrusion cannot detect a threat like SolarWinds, which was deployed from within that perimeter. To address this area, CISA will transition some of the $650 million in funding it received in the American Rescue Plan to programs for detecting […]
The Cybersecurity and Infrastructure Agency has released a new tool that will allow victims of the SolarWinds breach scan their systems for traces of hacker activity left behind after the breach. The CISA Hunt and Incident Response Program (CHIRP) scans for signs of Advanced Persistent Threat compromise within a system, CISA explained in a release announcing […]
A guide from the National Security Agency and Cybersecurity and Infrastructure Security Agency describes “Protective DNS”, a service that leverages the Domain Name System which translates internet names into numeric addresses, to provide some protective services by intercepting and analyzing DNS queries. The document describes ways that PDNS can improve security, implementation pitfalls, and a […]