risk assessment Archives

WASHINGTON, DC – SEPTEMBER 20: Rep. Zoe Lofgren (D-CA) speaks during a House Rules Committee hearing to discuss The Presidential Election Reform Act. (Photo by Drew Angerer/Getty Images)

House Dems call on White House to make agencies adopt NIST AI framework

Reps. Lofgren, Lieu, and Stevens say the Office of Management and Budget should require federal agencies to follow NIST's AI Risk Management Framework.

Jul 21, 2023 By Nihal Krishan

Survey highlights need for agencies to find, remediate IT risks more quickly

A majority of federal and state agency executives believe their organizations can detect vulnerabilities in their networks, but many face challenges remediating them.

Mar 7, 2023 By Scoop News Group

A man works at his work station at the National Hurricane Center in Miami, Florida, on August 1, 2022. (Photo by CHANDAN KHANNA/AFP via Getty Images)

NOAA evaluating multi-factor authentication for apps and devices

Chief information officer Zach Goldstein tells FedScoop the agency plans to launch a Cloud Program Management Office in fiscal 2023.

Aug 17, 2022 By Dave Nyczepir

NASA agrees to insider threat risk assessment of unclassified systems

The agency plans to determine if the program needs to be expanded to protect more than just classified systems.

Mar 18, 2022 By Dave Nyczepir

CISA working group assessing cyber risks to space infrastructure

CISA's working group will emulate the public-private partnership used to protect pipeline operators.

Nov 16, 2021 By Dave Nyczepir

FBI awards $13.5M risk assessment contract in move to CIA clouds

Telos Corporation has a $13.5 million contract from the bureau to integrate its Xacta solution — which is already used by the CIA — with the FBI's…

Feb 4, 2021 By Dave Nyczepir

workforce training tech IT, CIO, CISO — (Getty Images)

CMMC looks to clear up questions about cybersecurity assessors

The Accreditation Body for the Cybersecurity Maturity Model Certification (CMMC) has released more information about training and approval for people who want to be third-party assessors.

May 28, 2020 By Jackson Barnett

Why government is slow to endorse frameworks for quantifying cybersecurity risk

Until individual agencies like the Department of Energy and Department of the Treasury see success quantifying risk, the practice won't likely be mandated.

Aug 19, 2019 By Dave Nyczepir

FedRAMP issues new continuous monitoring guidance and requirements

FedRAMP issued new documents detailing the requirements needed for automated scanning.

Mar 21, 2018 By Carten Cordell

EXCLUSIVE: VA downplays risk assessment report

A 2013 internal security risk assessment of the Department of Veterans Affairs’ main electronic health record system that warned a data breach was “practically unavoidable” did not…

Feb 24, 2014