Shows & Panels
- The 2014 Big Picture on Cyber Security
- AFCEA Answers
- Ask the CIO
- Building the Hybrid Cloud
- Connected Government: How to Build and Procure Network Services for the Future
- Continuing Diagnostics and Mitigation: Discussion of Progress and Next Steps
- Federal Executive Forum
- Federal Tech Talk
- The Intersection: Where Technology Meets Transformation
- Maximizing ROI Through Data Center Consolidation
- Moving to the Cloud. What's the best approach for me
- Navigating Tough Choices in Government Cloud Computing
- The New Generation of Database
- Satellite Communications: Acquiring SATCOM in Tight Times
- Targeting Advanced Threats: Proven Methods from Detection through Remediation
- Transformative Technology: Desktop Virtualization in Government
- Value of Health IT
Shows & Panels
How to improve cybersecurity through acquisition
Tuesday - 2/18/2014, 9:08pm EST
In January the GSA released a report on "Improving Cybersecurity and Resiliency through Acquisition".
The idea is quite simple, before an acquisition is made, a thorough consideration of its security implications should be taken into account.
During the interview Monette brings up the fact that the commercial world has 85% of the critical infrastructure.
The federal government must take the lead in building security from the ground up.
One of the industry participants in the repost was Carter Schoenberg.
He expands upon the cyber requirements, the lack of a single standard, and the need to ramp up knowledge of the contracting officer.
Schoenberg refers to the 237 controls that are a part of NIST 800-53.
The interview concludes with the observation that billions are spent on cybersecurity every year but the risk posture of the federal government is not improving proportionally.