bnv.fnr.search/tags;tile=1;pos=top;sz=728x90;ord=
5:26 pm, December 18, 2014

Search Result

Search Tags:  Technology

Teleworkforce by the numbers

Census grabs a statistical snapshot of US teleworkers.

Tags: technology , TANDBERG Telework Center , telework , Census

Friday - 03/05/2010, 04:12pm EST

Federal Information Security - The Shift to a Risk Management Framework

The National Institute of Standards and Technology's (NIST) recent release of Special Publication 800-37, Revision 1 Guide for Applying the Risk Management Framework to Federal Information Systems: A Security Life Cycle Approach is an important change in the direction of how federal agencies achieve information security and manage information system-related security risks. It shifts the focus away from a point in time Certification and Accreditation (C&A) approach to compliance towards continually assessing risk and security authorization. As a result, the federal information security community is sending a message to the broader federal community and creating an important discussion: the cyber threat is real and must be addressed in the context of its potential impact on an organization. Cyber security is not as simple as a "check the box" requirement. The paradigm shift away from point in time security and towards obtaining situational awareness of the organization's risk posture must be as pervasive in the federal government as the cyber threats are against us.

Regarding the impact on agency security procedures, the publication is clear on the focus of its new framework, stating:

    The revised process emphasizes: (i) building information security capabilities into federal information systems through the application of state-of-the-practice management, operational, and technical security controls; (ii) maintaining awareness of the security state of information systems on an ongoing basis through enhanced monitoring processes; and (iii) providing essential information to senior leaders to facilitate decisions regarding the acceptance of risk to organizational operations and assets, individuals, other organizations, and the Nation arising from the operation and use of information systems.


This new Risk Management Framework builds much needed flexibility into the overall federal information security lifecycle to address the increasing nature and scope of threats in real-time, providing a number of key advantages that include:
  • Continually evaluating the organization's risk posture and maintaining situational awareness of its cyber security posture
  • Understanding the state and maturity of an agency's cyber security program
  • Evaluating cyber security programs at key vulnerability points: people, processes, and technology
  • Maintaining a focus on the security program lifecycle
  • Addressing the key functions (governance, risk, management, compliance, operations) of a security program


Perhaps most importantly, agency security programs will be better positioned to evolve and mature - an absolute necessity for staying ahead of the growing and dynamic threat to our Nation's cyber security.

Tags: technology , Trusted Advisor Blog , risk management , Federal Information Security , NIST

Wednesday - 03/03/2010, 07:39pm EST

"Identity Theft: The $500 Billion Criminal Enterprise"

Wednesday, November 11th, 2009 at 2:05pm

Identity Theft is a multifaceted problem that has grown to epidemic proportions with the development of the internet and of the on-line economy.

Tags: technology , Booz Allen Hamilton , Booz Allen Distinguished Speaker Series , Kathleen Walter , IRS , Richard Power , CyLab , Carnegie Mellon University , Calivin Sneed , Blue Cross Blue Shield Association , Kennethe Jenkins , US Secret Service , cyber crime , identity theft

Monday - 10/26/2009, 08:49pm EDT
Listen

OMB taking a deeper look at data centers

Federal CIO Vivek Kundra will sign a memo requiring agencies to do another, more detailed survey of their data centers. Agencies also are working on a department-wide plan to consolidate these buildings.

Tags: technology , Vivek Kundra , Van Hitch , Richard Spires , Michael Duffy , OMB , DHS , Treasury , Justice , CIO Council , AFCEA , data center consolidation , cloud computing

Friday - 02/26/2010, 02:15pm EST
Listen
  •  
  • 610
  •