Clouds over Washington DC

Microsoft preps its government cloud

Microsoft aims to make its government-centric cloud as close to the commercial version of Azure as possible, while offering security assurances such as the FedRAMP seal of approval.

distrustful business partners

When everybody lies: Voice-stress analysis tackles lie detection

Voice-stress analysis can help agencies assess a variety of human risk factors. But so far no technology is 100 percent accurate or foolproof.

securing data in use in the cloud

How to lock down data in use -- and in the cloud

The challenge of securing data in use is attracting cloud encryption solutions from industry heavyweights to cloud security startups.

digital surveillance

System to continuously scan behavior of cleared workers

U.S. intelligence agencies are planning to thwart insider threats with a system for automated, continuous monitoring of the background and behavior of government workers with secret clearances.

Isolate XP computers from the network

Microsoft ends support for XP next month. Are you ready?

As Microsoft ends support of Windows XP in April, here are steps to prepare for transitioning to a new OS.

domino

Is the cloud the next stop for enterprise risk management?

Cloud-based governance, risk and compliance solutions are a logical step for agencies that need to address new rules, consolidate systems and serve their mobile workforce.

biometrics

DOD mulls future of troubled automated biometric ID system

The upgrade path of the Defense Department’s Automated Biometrics Identification system remains unclear as the Army confronts test failures and future IT roadblocks.

encryption

Microsoft offers email encryption from the desktop

Office 365 Message Encryption lets IT managers set the conditions for message encryption.

cybersecurity

NSA, universities push to establish cybersecurity as a science

The National Security Agency is sponsoring a competition for the best paper on cybersecurity, part of an effort to promote the practice as a science.

Continuous monitoring

5 elements of a successful CMaaS program

A continuous monitoring-as-a-service approach gives agencies access to the services necessary to design, implement and maintain a monitoring program.

smartphone ID

Can derived credentials turn a phone into an ID manager?

The federal government has been testing derived credentials for smartphone-based remote authentication, but making the plan work is proving to be tricky.

monitor

Got your security monitoring game in gear?

Requirements from OMB for Information Security Continuous Monitoring set a Feb. 28 deadline for agencies to prepare formal plans that include a transition to standardized technology and automated feeds to a yet-to-be-developed government dashboard.

Topic Resources

  • Update on Assessment & Authorization (A&A) Processes for Cross Domain Solutions

    As introduced in our latest certification and accreditation (C&A) basics webcast (“Navigating Certification & Accreditation – A Primer) C&A terminology is transitioning to assessment and authorization (A&A). See the associated white paper “From C&A to A&A – The RMF Shoe Has Dropped.” Continuing the transition discussion, Raytheon Cyber Products and Steve Welke are pleased to present a webcast updating the latest information on A&A processes for cross domain, multilevel security solutions. Join Steve Welke, an A&A industry expert, as he discusses the A&A principles, requirements and processes.

  • Increase Data Security through Your Print Solution

    You’ve consolidated your desktops with virtualization and moved your data to the cloud. What else can you do to obtain additional costs savings and increase security while keeping your network flexible? Connect print and digital information from across your organization with the people who need it, exactly when they need it. Join this webcast to learn how security software and printing solutions work together to eliminate extraneous printers at multiple sensitivity levels, allowing organizations to recognize significant savings from reduced hardware, space, power, support and supplies.

  • IBM i2 National Security and Defense Intelligence Demo

    In this video IBM Product Manager James Vincent presents an overview and demo of IBM® i2® National Security and Defense Intelligence—a cost effective information exploitation solution that provides data acquisition, multi-faceted intelligence analysis and multi-agency and partner collaboration features.

  • All About Self-Encrypting Drives

    With data security risks on the rise, an influx of government mandates and regulations for securing data have been implemented and are becoming the norm. Eliminating exposure of private data is now simply viewed as a mandatory and sound business practice. To avoid the high costs associated with these types of data compromises, organizations must put in place a comprehensive security strategy. Read this whitepaper to learn how self-encryption is achieving this initiative.

  • The Rising Threat of Enterprise Cybercrime

    Cybercriminals are leveraging vulnerabilities of the Internet, browsers, operating systems, and applications to secretly and proficiently gain access to information assets. Compromising employee endpoints with malware has become the preferred method; a far simpler path into the network than a direct network attack. Agencies need to recognize and address this growing danger.