Complex supply chain logistics are leaving defense contractors vulnerable
An evaluation of 300 small and medium defense companies suggests contractors have prioritized interoperability with outside systems over security.
About SC Media
Government
Inglis confirmed as first national cyber director
Inglis will be tasked with making sure all the federal agencies operate from a coherent cyber policy. It is a juiced-up, Senate-confirmed, mandated-by-law version of the White House cyber coordinator position that President Donald Trump eliminated.
State and local officials push for cyber grants to protect critical services
One issue states have traditionally faced with grant funding is that one time payments cannot fund projects requiring long term employement, training and equipment upgrades.
State and local governments granted free access to timely, in-depth cyber intel
Deloitte forged what it calls a “first-of-its-kind” relationship with MS-ISAC. SC Media spoke to Srini Subramanian, Deloitte Risk & Financial Advisory leader for the state and local government, to get more details.
TSA offers peek at second pipeline directive
The TSA is continuing to develop additional measures that will have “the force of a regulation that would require more specific mitigation measures” by companies.
How far apart are the US and Russia from agreeing to cyber rules?
Harvard’s Belfer Center on Friday published a unique paper where U.S. and Russian researchers separately explained their nation’s perspective on a potential negotiation, what both sides actually want, and what would benefit both sides. SC Media spoke to one of the featured researchers.
Cyber nominees try to define their roles, and what that may mean for private sector partnership
National cyber director nominee, Chris Inglis, pointed to three ways that more widespread adoption of cyber best practices could take hold: “One is enlightened self interest; that’s apparently not working. The second is market forces; that’s apparently not working. And the third is some imposition of standards or regulation on top of that.”
Colonial CEO touts corporate cyber transparency, defends his own
The hearing touched on the internal and external debates that face most executives during a crippling cyberattack: How fast should a company act, and what decisions should be made internally versus in consultation with external advisers or the federal government.
DHS chooses companies to run civilian agency vulnerability disclosure programs
The Department of Homeland Security announced Tuesday that it will partner with vulnerability disclosure platform Bugcrowd and government technology, environmental and safety services contractor EnDyna to provide a civilian agency vulnerability disclosure program platform.
Feds recover $2.3 million from Colonial Pipeline ransom
The announcement is compelling, as the public and private sector alike struggle to manage the response to a recent surge of ransomware attacks. More frequent recovery of funds after a ransom payment could shift the risk dynamic associated with these attacks for the business community, while also removing the financial incentive for attackers.
Next post in Ransomware
