NIST information risk management evangelist Ron Ross sees continuous monitoring playing a vital role in securing cloud computing. The Federal Risk and Authorization Management Program known as FedRAMP fits very nicely with continuous monitoring by allowing agencies to define good sets of security re...
via Web Host Industry Review The United States Computer Emergency Readiness Team (www.us-cert.gov) announced on Friday it has published a Technical Security Alert in response to the increasing number of high-profile incidents, which have impacted both government and privatesector computer networks. ...
via Los Angeles Times The cyber-security industry is on Defcon 1 high alert. The recent rash of attacks on dozens of websites including those of the CIA, the FBI and even PBS is roiling the security industry and increasing demand for cyber-defense experts. “Every time one of these breaches mak...
via nextgov The government needs approximately 20,000 more cybersecurity professionals, particularly those with unique skills to discover evidence of sophisticated attacks, two experts suggest. Alan Paller, director of research at the SANS Institute, and Ed Giorgio, former chief cryptographer at the...
via Bank Info Security Northrop Grumman Cybersecurity Research Consortium’s Robert Brammer says IT security researchers should think like Wayne Gretzky, the National Hockey League hall of famer: Skate to where the puck will be. “Most people, when they think about computer security, think...
via Strategy Page The U.S. Department of Defense is trying to improve its network defenses, and those of companies that supply weapons and equipment. The new plan is to pool intelligence, and defensive techniques with the major defense companies. This is being done as a pilot project called DIB (Def...
via Government Computer News A continuing series of high-profile security breaches, capped by reports that the Google Gmail accounts of some government and industry officials have been compromised, illustrates the need for agencies to focus on the basics of cybersecurity, government security officia...
On 28 September 2011 a small number of cyber innovators, computer security practitioners and information assurance experts will gather in an attempt to map out new paths for positive change in the cyber security dynamic. This summit seeks dramatically enhance the state of security and functionality ...