A Note From Our President & Founder Jim Garrettson
Last week President TrumpÂ signed an executive orderÂ to bolster our nationâs cybersecurity and maintain and strengthen U.S. cybersecurity capabilities.
The order addresses the network security of U.S. government agencies, enhances the protection of infrastructure like the financial sector and the energy grid, and provides guidelines for developing a more robust cyber deterrence strategy.
As accusations of hacking and cyberattacks by Russia and China continue to pile up, and scores of people and institutions suffer embarrassing revelations on WikiLeaks, the need for cybersecurity has never been clearer. The devastating WannaCry ransomware cyberattacks last week only underscored how desperately we need public and private sector cybersecurity practices that work effectively.
One of the key aspects of Trumpâs order is that the National Institute of Standards and Technology (NIST) will be developing the cybersecurity standards that the federal agencies must follow, according to a framework they have set up which will fulfill five key functions: identify, protect, detect, respond and recover. Each of these functions is divided and subdivided to enable augmentations and deletions of concepts at those smaller levels, allowing for increased flexibility for the framework, according to NISTâs Matthew Barrett.
Under the executive order, agency heads will be held accountable for implementing risk management measures that are proportional to the risk and magnitude of harm that unauthorized access and use could cause. All federal agencies will have to abide by NISTâs framework in their efforts to manage their cybersecurity risks. Additionally, the executive order requires agencies to provide a risk management report to the Secretary of Homeland Security and the Director of the Office of Management and BudgetÂ within 90 daysÂ of the order being signed.
Since this is a cybersecurity compliance standard, it stands to reason that all government contractors and sub-contractors will be affected. While DOD contractors have faced tight cybersecurity standards for years, other businesses operating in the federal space, like those in the health industry, for instance, may have adjusting to do.
This represents both a challenge and a business opportunity for those with the cyber-security and implementation know-how.
If you’re interested in learning more aboutÂ how federal agencies can improve their respective data security measures to respond to constantly evolving IT threats and the evolving role of cyber and strategic partnerships, you can attend the Potomac Officers Club’s 2017 Spring Cybersecurity Summit. The Summit will be held on Wednesday, May 24th at the WestinÂ Tysons Corner, located atÂ 7801 Leesburg Pike Falls Church, Virginia 22043.
Keynote speakers include:Â
ADM. MICHAEL ROGERS -Â Commander/US Cyber Command & Director, National Security Agency (NSA) of U.S. Navy
JEANETTE MANFRA – Deputy Under Secretary for Cybersecurity and Communications (Acting), Office of the Under Secretary, NPPD of the DHS
RON PONTIUS -Â Deputy to the Commanding General U.S. Army Cyber Command of the DoD
NIST Reveals Draft of Cyber-Security Framework
Industry experts and federal employees met at a workshop hosted this week at the National Institute of Standards and Technology in Gaithersburg, Maryland to hammer out the details of theÂ new federal cybersecurity framework draft requested by President Donald Trump in his executive order.
55 Firms Land Spots on $37B Army Contract for C4ISR Program Support Services
TheÂ U.S. ArmyÂ has selectedÂ 55 companies to compete for task orders under a potential $37.4 billion contract vehicle that coversÂ knowledge-based professional services for government programs that have command, control,Â communications, computers, intelligence, surveillance and reconnaissance requirements.
DHS, DOJ Triple Spending on Internet of Things
The Department of Homeland Security and Department of Justice have tripled their spending on equipment and services related to the Internet of Things (IoT) over the past six years, spendingÂ $600 million on theÂ smart security industry, a new study by contracting intelligence firm Govini finds.
Executive Mosaic is honored to present Lt. Gen. Dennis Crall, chief information officer and director of command, control, communications and computers/cyber at the Joint Chiefs of Staff, as a 2021 Wash100 Award recipient for spearheading the development of the Joint All Domain Command and Control (JADC2) strategy and leading innovative technology efforts. This marks Crall’s
Chris DeRusha, the new federal chief information security officer (CISO) for the Office of Management and Budget (OMB), has been selected by Executive Mosaic to receive the most coveted award in all of government contracting (GovCon) for the first time in his federal career. DeRusha has been recognized as a recipient of the 2021 Wash100
President Donald Trump has signed an executive order that seeks to address foreign use of infrastructure as a service cloud computing platforms for malicious cyber activities. The order directs the secretary of the Department of Commerce to develop rules within six months to require IaaS providers to verify the identity of foreigners with IaaS accounts