« Archive »

C4I for Wed., March 22, 2017, Vol. #, Issue #.

OMB’s FISMA Report Shows Agencies Moving Toward Cyber Security Goals

Federal agencies are making progress toward achieving cyber security goals in three priority areas although overall, agencies are still short of meeting targeted metrics, the White House Office of Management Budget (OMB) said in a report last March 10.The metrics contained in the Cross-Agency Priority (CAP) goals allow OMB to track how well agencies are…

Bossert: DHS Will Be Cyber Managed Service For Government With Private Sector Help

An adviser to President Trump said March 15 that the new administration will shift federal government cybersecurity into a Department of Homeland Security (DHS)-led managed service provider model and that the government will rely more heavily on private industry.Thomas Bossert, assistant to the President for Homeland Security and Counterterrorism, laid out the first major statement…

Bossert Outlines Administration Stance On Cyber Deterrence, Norms, And IT Modernization

President Trump’s advisor for homeland security explained the new administration’s perspectives on cyber deterrence, maintaining norms, and information technology (IT) modernization at an event March 15.Thomas Bossert, assistant to the President for Homeland Security and Counterterrorism, gave the keynote at a Center for Security Studies and International Security (CSIS) cybersecurity summit, using it to introduce the…

Warner Says Working On Legislation To Build Cyber Security Into Federal IoT Purchases

Sen. Mark Warner (D-Va.) on March 15 said he is working on legislation aimed at requiring that cyber security be built into Internet-connected systems and technologies that the federal government purchases.Warner said generally he doesn’t think the U.S. is “prepared” with regard to cyber security posture given the range of successful hacks that are taking…

Langevin Looks To Cyber Oversight And Workforce Issues In Next Year

Rep. Jim Langevin (D-RI) said March 20 he is looking to focus on oversight of new cyber security legislation and advancing workforce issues over the next year.Langevin, ranking member of the House Armed Services Subcommittee on Emerging Threats and Capabilities and co-founder/chair of the Congressional Cybersecurity Caucus, said Congress will move more into an oversight…

Lockheed Martin Wins $347 Million Contract Supporting U.S. Defense Cyber Crime Center

The U.S. Defense Department awarded Lockheed Martin [LMT] a $347 million contract to renew its support of the Defense Cyber Crime Center (DC3), the company said March 16.The company will continue its role as the prime contractor for the DC3 through a five-year (one base year plus four one-year options) contract. It was awarded by…

Navy Awards Contracts For Cyberspace Research And Technology Integration

The U.S. Navy awarded four indefinite-delivery/indefinite-quantity (IDIQ) cost-plus-fixed-fee contracts worth a combined almost $76 million to provide cyberspace science, research, engineering, and technology integration, the Defense Department said March 8.Contracted support includes innovative technology assessment and development; rapid software development and prototyping; enabling capability training; security engineering; and cybersecurity risk management.These are multiple-award, three-year contracts…

Industry Officials Praise Cyber Information Sharing Efforts With DHS But Seek More Context

The Department of Homeland Security’s (DHS) role in creating processes for sharing cyber threat information between the federal government and industry, particularly through a year-old automated portal, has been valuable but a shortcoming is that the information lacks context, industry officials told a House panel on March 9.The ongoing cyber security information sharing efforts between…

RAND Study Finds Zero-Day Software Vulnerabilities Have A Lifespan of Almost Seven Years

A newly released RAND Corp. study found that zero-day vulnerabilities have an average life expectancy (time between first private discovery and public disclosure) of 6.9 years, making it a reasonable option to stockpile vulnerabilities for cyber defenders and attackers.The study, “Zero Days, Thousands of Nights: The Life and Times of Zero-Day Vulnerabilities and Their Exploits,”…

BAE Wins $8.6 Million Contract For Technology To Restore Power To U.S. Power Grid After Cyber Attack

The U.S. Defense Advanced Research Projects Agency (DARPA) awarded BAE Systems an $8.6 million contract to develop technology to quickly restore power to the U.S. electric grid after a cyber attack causing a catastrophic failure, the company said March 14.This technology will be part of the DARPA Rapid Attack Detection, Isolation, and Characterization Systems (RADICS)…

DTRA RFI Seeks Input On IT Support Including Migration To The Cloud

The U.S. Defense Threat Reduction Agency (DTRA) issued a request for information (RFI) for industry input on strategies to implement a goal of evolving the agency information technology (IT) services including migration to the Cloud, according to a Feb. 28 FedBizOpps posting.Although this was not a solicitation, DTRA said the RFY comes before an upcoming requirement for…

DHS Awards $16 Million In Contracts To Help Detect Vulnerabilities In New Software

The Department of Homeland Security (DHS) Science and Technology Directorate (S&T) awarded Kestrel Technology, LLC and GrammaTech, Inc. separate contracts worth about $8 million each to help improve static analysis tools used by developers to detect potential vulnerabilities in new software systems, DHS said the week of March 6.Both contracts were issued as part of…