insidecybersecurity16h
Trump’s pick for DHS secretary Noem brings new face to lead cyber efforts under CISA, TSA
Kristi Noem (R) will bring a fresh perspective to cyber efforts led by the Department of Homeland Security as President-elect Trump’s nominee for secretary, at a time when the Cybersecurity and ...
insidecybersecurity16h
CISA, partners issue advisory outlining top 15 exploited vulnerabilities in 2023 with recommended mitigations
The Cybersecurity and Infrastructure Security Agency has released its annual advisory with federal and international partners on the top 15 vulnerabilities routinely exploited in 2023, along with ...
insidecybersecurity16h
Proposed TSA cyber regulation addresses harmonization, alignment with performance-based standards
The Transportation Security Administration addresses harmonization with other cyber regulations in a proposed rulemaking setting up requirements for the pipeline and rail sectors, based on feedback ...
insidecybersecurity6d
TSA issues proposed rule to establish cyber risk management requirements for pipeline, railroad sectors
The Transportation Security Administration has released a long-awaited notice of proposed rulemaking directing owners and operators in the pipeline and railroad sectors to set up cyber risk management ...
insidecybersecurity5d
NIST plans to release draft update for advanced persistent threats publications building on CUI work by Thanksgiving
The NIST 800-171 series focuses on protecting CUI on nonfederal systems. The agency finalized updates to NIST 800-171 and 800-171A in May and is now moving forward with updating 800-172 and 800-172A ...
insidecybersecurity6d
Current, former CISA leaders assert integrity of 2024 elections in face of digital threats
CISA Director Jen Easterly emphasized the integrity of the election process on Wednesday in a statement highlighting work with state and local partners and ongoing efforts to assist with security of ...
insidecybersecurity5d
Biden administration leaves opportunities for further cyber rulemaking addressing different sectors
The Biden administration’s approach to setting cyber requirements for individual sectors will face a challenge in the coming months with rulemakings that are not yet finalized and potential changes to ...
insidecybersecurity5d
TSA cyber proposal features new requirements on supply chain risk management for pipeline, rail transport
TSA’s notice of proposed rulemaking published Nov. 7 contains requirements from security directives published over the last three years directing surface transportation entities to create a cyber risk ...
insidecybersecurity9d
Potential shifts in Congress pose questions on key committee chairs, cyber policy avenues
As voters go to the polls on Election Day, expected shakeups will determine future cyber policy directions in the Senate while the outcomes will create opportunities for new leadership on key ...
insidecybersecurity9d
The Week Ahead: Election Day plus NIST advisory board meeting on CISA secure by design work, framework updates
The Information Security and Privacy Advisory Board meets this week to hear from federal officials and industry stakeholders on CISA’s secure by design initiative and NIST framework efforts, while ...
insidecybersecurity8d
Easterly: ‘Low-level’ cyber threats expected on Election Day unlikely to impact outcomes, integrity of voting
CISA Director Jen Easterly says cyber attacks are expected to target election infrastructure in the build-up to certifying results but are unlikely to impact the integrity of voting due to extensive ...
insidecybersecurity9d
CISA’s Conley: AI plays significant role in scale of disinformation efforts but not ‘game-changer’ for election security
Generative AI has been able to lower the barrier for malicious actors to leverage cyber tools or disinformation campaigns, but it has not fundamentally introduced ...