Security

Resources on Security

OMB Circular A-130 —Managing Information as a Strategic Resource
How to Prevent Security Certificates From Expiring During a Lapse in Operations —These are the steps that people in government can take to avoid having security certificates expire during a lapse in operations.
Federal Information Security Management Act of 2002 – Presentation to the 2003 FISSEA Conference —The head of the agency delegates to the CIO a number of information security responsibilities. The CIO in turn designates a senior agency …
Social Media Cyber-Vandalism Toolkit —Guidance on how to respond to cyber-hijacking.

Tools and Services

Cloud.gov —A FedRAMP approved cloud hosting platform that makes it easy for federal agencies to get on the cloud by simplifying procurement, security, …
FedRAMP —The Federal Risk and Authorization Management (FedRAMP) is a process that authorizes cloud products and services.
Login.gov —An identity management service that provides secure and private online access to participating government programs.
Pulse —Measures how U.S. government domains are following best practices for federal websites.

News and Events on Security

54 posts

10x

10x Project Lightning Talks: 2020

10x project teams will demonstrate their work to date and provide brief overviews of each project. We hope that these talks will highlight some of the most interesting work happening in government today and inspire others to submit ideas to 10x.

Jun 30, 2020

Making .gov More Secure by Default — The DotGov Program announces its intent to preload the .gov top-level domain in order to protect .gov site visitors. — via DotGov Registry

Jun 22, 2020

Cloud.gov

Building for the 21st-Century Web with Federalist

Building, deploying, and hosting fast, secure, and compliant federal web sites and applications with Federalist.

David Corwin

Jun 16, 2020

This week, Login.gov has surpassed 20 million registered users! 🎉 Congratulations to the team for hitting this milestone while keeping the product simple and secure for the public. — via Login.gov

Jan 22, 2020

GSA Steps Up Security for .gov

How GSA’s DotGov Program is modernizing the security of .gov to make government websites and systems more secure.

Cameron Dixon

Marina Fox

Oct 29, 2018

378 views

Video

Conversations on Public Impact: How data trusts can preserve and protect your digital initiatives

The Ethics Working Group in GSA’s Technology Transformation Service hosts a presentation about data trusts; a legal structure designed to manage data, code, and other digital assets.

Jeremy Zilar

Mar 21, 2018

A Conversation With ITIF About the State of Federal Government Websites

Since it’s been nearly six months since their report was released, we wanted to check in with ITIF and see what they’ve learned, what they’ve heard from agencies and what their future plans are to build on this research.

Andrea Sigritz

Sep 20, 2017

The Data Briefing: How Blockchain’s Future Growth Will Affect Federal Agencies

Blockchains are an innovative technology which promises to radically change how society conducts business. It will take significant changes in organizational processes before agencies can begin to support blockchains.

Bill Brantley

Sep 13, 2017

Government Launches Login.Gov to Simplify Access to Public Services

Joel Minton, a member of the U.S. Digital Service, is working with GSA’s Technology Transformation Service as the director of login.gov. Tom Mills is the Chief Technology Architect at U.S. Customs and Border Protection. In early April, the U.S. Digital Service and 18F launched login.gov, a single sign-on solution for government websites that will enable

Joel Minton

Tom Mills

Aug 28, 2017

NIST Publishes NICE Cybersecurity Workforce Framework

Categorizing and Describing Cybersecurity Work for the Nation The National Initiative for Cybersecurity Education (NICE) is pleased to announce the release of Special Publication 800-181, the NICE Cybersecurity Workforce Framework. This publication serves as a fundamental reference to support a workforce capable of meeting an organization’s cybersecurity needs. It provides organizations with a common, consistent

National Institute of Standards and Technology Team

Aug 22, 2017

NIST Crafts Next-Generation Safeguards for Information Systems and the Internet of Things

Information systems—from communications platforms to internet-connected devices—require both security and privacy safeguards to work successfully and protect users in our increasingly complex and interconnected world. Toward these ends, the National Institute of Standards and Technology (NIST) has issued a new draft revision of its widely used Special Publication (SP) 800-53, Security and Privacy Controls for Information

National Institute of Standards and Technology Team

Aug 22, 2017