Subscribe by RSS
Sort By:
Considerations and Lessons Learned for Federal Agency Implementation of DNS Security Extensions and E-mail Authentication
Date: April 16, 2012Type: Article
Federal Risk and Authorization Management Program (FedRAMP)
Date: January 04, 2011Type: Article
Protecting Consumer Privacy in the Internet Economy
Date: December 29, 2010Type: News
A December 16 green paper from the Department of Commerce’s Internet Policy Task Force, “Commercial Data Privacy and Innovation in the Internet Economy,” offers initial recommendations for protecting consumer privacy online. In a global e-market estimated at $10 trillion...
National Archives Speeds Up Declassification
Date: December 16, 2010Type: News
Whether it takes 100 days or 100 years, eventually classified information loses its potential to harm U.S. security interests. Sheryl Shenberger, Director of the National Declassification Center (NDC) at the National Archives and Records Administration (NARA), noted that the problem is deciding...
FedRAMP: Governmentwide Approach to Cloud Security
Date: November 17, 2010Type: Blog
If you've read my blog for a while, you know I have I have been a big proponent of cloud computing for some time. Cloud computing enables faster, greener, and more cost effective service to our stakeholders. However, that doesn’t mean there aren’t issues around cloud computing that still need to...
Leadership Testimony
Date: November 09, 2010Type: Article
FedRAMP Press Inquiries
Date: November 02, 2010Type: Article
Open for Questions: Cybersecurity
Date: October 20, 2010Type: External Video
This is a video from an external site.
National Cybersecurity Awareness Month Advocates Good “Cyber Hygiene”
Date: October 14, 2010Type: News
Surfing the web. Social networking. Shopping. Even the most innocuous online activities can pose a threat to our nation’s cybersecurity, and all Americans should play a part in protecting it.
Cybersecurity: A Team Sport
Date: August 23, 2010Type: Blog
So I was thinking about how much the Department of the Navy relies on teamwork (civilians/military/contractors and academia) to build and manage our information systems. It has been a while since I...
Information Security Committee
Date: August 03, 2010Type: Article
Guidance on Establishing a Federal Privacy Office
Date: July 27, 2010Type: News
Two new publications offer guidance to Federal personnel seeking to establish or streamline a privacy office: “Best Practices: Elements of a Federal Privacy Program,” by the Federal CIO Council Privacy Committee, and the “Guide to Implementing Privacy,” by the Department...
Clarifying Cybersecurity Responsibilities and Activities of the Executive Office of the President and the Department of Homeland Security, M-10-28
Date: July 06, 2010Type: Pdf (Adobe Acrobat Reader is required to view this file)
This memorandum outlines and clarifies the respective responsibilities and activities of the Office of Management and Budget, the Cybersecurity Coordinator, and the Department of Homeland Security, in particular with respect to the Federal Government's implementation of the Federal Information...
Social Media Presence at NRC
Date: July 02, 2010Type: Article
Department of Homeland Security Privacy Office Guide to Implementing Privacy
Date: June 28, 2010Type: Pdf (Adobe Acrobat Reader is required to view this file)
The purpose of the Department of Homeland Security Privacy Office Guide to Implementing Privacy is to inform the Department, other federal agencies, and the public about how the DHS Privacy Office implements privacy at DHS. The Guide provides an overview of the DHS Privacy Office's...
Cyber Security Goes Pro at Commerce
Date: June 25, 2010Type: News
This summer, the Department of Commerce is finalizing a new policy requiring professional certification for several information system security positions, and has established the Cyber Security Development Program (CSDP) to assist employees in meeting these requirements and enhancing their...
Our Insecurities or: How to Stop Worrying and Love Compromised Cyber Environments
Date: June 05, 2010Type: Blog
My Deputy CIO for IT Security, Jerry Davis recently asked if I thought he was paranoid. I assured him that he wasn’t really paranoid if we really are operating in a compromised environment.
NRC Identification Cards
Date: May 26, 2010Type: Article
Cyber Security Awareness, Web 2.0-Style at Treasury
Date: May 16, 2010Type: Video
Open on a 20-something employee plugging a USB device into his laptop. Suddenly an “All Files Deleted” message comes flashing across the screen, as the panicked employee jumps on the phone for help. This memorandum provides instructions for meeting your agency's FY 2010 reporting requirements under the Federal Information Security Management Act of 2002 (FISMA) (Title III, Pub. L. No. 107-347). It also includes reporting instructions on your agency’s privacy management program.
The...
Date: April 21, 2010 FY 2010 Reporting Instructions for the Federal Information Security Management Act (FISMA) and Agency Privacy Management, M-10-15
Type: Pdf (Adobe Acrobat Reader is required to view this file)
