Cybersecurity gets big boost in 2016 budget

Cybersecurity gets big boost in 2016 budget

The president's 2016 budget calls for$14 billion in cybersecurity spending, about a 10 percent increase over 2015 funding.

4 tips for CDM Phase 2 assessments

CDM Phase 2: How to avoid déjà vu all over again

As agencies prepare to take up the Phase 2 of DHS’s Continuous Diagnostics and Mitigation program, they would do well to replay its initial gap assessment to get the program right.

Army Research Lab posts dshell code to github

Army ‘commits’ to open source with net forensic tool

The Army Research Lab recently posted code for Dshell, its forensic network analysis tool, to GitHub to support the forensic and incident response community.

Cheat sheet for the Internet of Things

Buckle up because the Internet of Things is about to take off fast. Here's a quick list of the basics of the new super network.

Broader white hat community improves outcomes, research suggests

More white hats improve security, researchers demonstrate

Bug bounties can increase the breadth – and the effectiveness – of white hat communities.

Windows 10 for government

Windows 10: Secure enough for government?

Microsoft’s new as-a-service operating system will come with a number of built-in security features like multi-factor authentication and containerization.

GAO: Agencies face cyber risk in building access systems

GAO: Agencies face cyber risk in building access systems

The Department of Homeland Security and the General Services Administration come up short in tackling cyber risk of access control systems in buildings they manages across the United States.

Swimlane launches automated security operations management platform

Swimlane launches automated security operations platform

With its data-driven automation and orchestration, Swimlane manages alerts, increases situational awareness and remediates threats.

DNI offers roadmap for national security data sharing

Agencies get roadmap for security data sharing

The Office of the Director of National Intelligence’s Information Sharing Environment released best practices for data sharing in pursuing national security threats.

open source components not always secure

How secure are your open source-based systems?

Software developers often assume that open source components in their supply chain are reliable – but assumptions like were behind the Heartbleed exploit. Here are ways to lock down your open source projects.

Firms combine mobile dev, code analysis for agency apps

Mobile dev, code analysis tool debuts for DOD, intell agencies

CACI, Appcelerator join forces in developing a tool to help agencies develop and release secure apps on schedule and within budget.

Focus on security obscures rise of ‘shadow IT’

Focus on security obscures rise of ‘shadow IT’

The Cloud Security Alliance survey finds more employees are empowered to use cloud-based applications – without IT department oversight.

Topic Resources

  • GameChanger: Microsegmentation

    In less than a decade, more than 87 million records with sensitive or private information have been exposed due to cyber-incidents on federal networks alone. Increasingly, organizations are beginning to realize that perimeter-based security just isn’t enough anymore. Download to learn how for many data centers, the solution is microsegmentation.

  • Stepping Up the Battle Against Advanced Threats

    Cyber-attackers continuously develop sophisticated tactics and evasion techniques to bypass the latest protection methods, requiring the security industry to find a different approach to malware protection. Read this whitepaper to learn where the traditional cybersecurity measures fall short and how your agency can adopt a new approach to defend against advanced threats.

  • The Rising Threat of Enterprise Cybercrime

    Cybercriminals are leveraging vulnerabilities of the Internet, browsers, operating systems, and applications to secretly and proficiently gain access to information assets. Compromising employee endpoints with malware has become the preferred method; a far simpler path into the network than a direct network attack. Agencies need to recognize and address this growing danger.