Security

Resources on Security

Federal Information Security Management Act of 2002 – Presentation to the 2003 FISSEA Conference —The head of the agency delegates to the CIO a number of information security responsibilities. The CIO in turn designates a senior agency …
How to Prevent Security Certificates From Expiring During a Lapse in Operations —These are the steps that people in government can take to avoid having security certificates expire during a lapse in operations.
OMB Circular A-130 —Managing Information as a Strategic Resource
Social Media Cyber-Vandalism Toolkit —Guidance on how to respond to cyber-hijacking.

Tools and Services

Cloud.gov —A FedRAMP approved cloud hosting platform that makes it easy for federal agencies to get on the cloud by simplifying procurement, security, …
FedRAMP —The Federal Risk and Authorization Management (FedRAMP) is a process that authorizes cloud products and services.
Login.gov —An identity management service that provides secure and private online access to participating government programs.
Pulse —Measures how U.S. government domains are following best practices for federal websites.

News and Events on Security

53 posts

This week, Login.gov has surpassed 20 million registered users! 🎉 Congratulations to the team for hitting this milestone while keeping the product simple and secure for the public. — via Login.gov

Jan 22, 2020

GSA Steps Up Security for .gov

How GSA’s DotGov Program is modernizing the security of .gov to make government websites and systems more secure.

Cameron Dixon

Marina Fox

Oct 29, 2018

287 views

Video

Conversations on Public Impact: How data trusts can preserve and protect your digital initiatives

The Ethics Working Group in GSA’s Technology Transformation Service hosts a presentation about data trusts; a legal structure designed to manage data, code, and other digital assets.

Jeremy Zilar

Mar 21, 2018

A Conversation With ITIF About the State of Federal Government Websites

Since it’s been nearly six months since their report was released, we wanted to check in with ITIF and see what they’ve learned, what they’ve heard from agencies and what their future plans are to build on this research.

Andrea Sigritz

Sep 20, 2017

The Data Briefing: How Blockchain’s Future Growth Will Affect Federal Agencies

Blockchains are an innovative technology which promises to radically change how society conducts business. It will take significant changes in organizational processes before agencies can begin to support blockchains.

Bill Brantley

Sep 13, 2017

Government Launches Login.Gov to Simplify Access to Public Services

Joel Minton, a member of the U.S. Digital Service, is working with GSA’s Technology Transformation Service as the director of login.gov. Tom Mills is the Chief Technology Architect at U.S. Customs and Border Protection. In early April, the U.S. Digital Service and 18F launched login.gov, a single sign-on solution for government websites that will enable

Joel Minton

Tom Mills

Aug 28, 2017

NIST Publishes NICE Cybersecurity Workforce Framework

Categorizing and Describing Cybersecurity Work for the Nation The National Initiative for Cybersecurity Education (NICE) is pleased to announce the release of Special Publication 800-181, the NICE Cybersecurity Workforce Framework. This publication serves as a fundamental reference to support a workforce capable of meeting an organization’s cybersecurity needs. It provides organizations with a common, consistent

National Institute of Standards and Technology Team

Aug 22, 2017

NIST Crafts Next-Generation Safeguards for Information Systems and the Internet of Things

Information systems—from communications platforms to internet-connected devices—require both security and privacy safeguards to work successfully and protect users in our increasingly complex and interconnected world. Toward these ends, the National Institute of Standards and Technology (NIST) has issued a new draft revision of its widely used Special Publication (SP) 800-53, Security and Privacy Controls for Information

National Institute of Standards and Technology Team

Aug 22, 2017

The Cutting EDGE: New Virtual Training Prepares First Responders for Active Shooter Incidents

Amidst the chaos of an active shooter event, preparedness is key to a seamless, swift and effective response—and a new video game funded by the Department of Homeland Security (DHS) Science and Technology Directorate and the U.S. Army Research Laboratory just might do the trick.

U.S. Department of Homeland Security

Aug 03, 2017

‘Cybersecuring’ the Internet of Things

I recently had the chance to talk with the legendary Vint Cerf, one of the founding fathers of the internet. We had a wide-ranging discussion about the past, present and future of the internet, network security and what it would take to successfully, safely and reliably merge the digital and physical worlds, a concept known

Donna Dodson

Jun 29, 2017

FICAM’s New Resources Help Solve Government’s Identity Management Challenge

In today’s digital world, it’s imperative that government agencies safeguard citizens’ physical and electronic security. In the world of Federal IT, adopting and advancing cybersecurity can’t be accomplished in one day, or by one agency. Federal agencies must work together to tackle complex problems and stay ahead of evolving network threats. The Federal Identity, Credential,

Jim Sheire

Jun 12, 2017

Hybrid Cloud: A Key to Phasing in New Technologies

Like any newer technology, cloud computing has faced adoption challenges. IT managers understand the huge potential efficiency improvements and savings that cloud computing can bring to their agencies, but also have questions about security, compatibility, and funding. With these concerns and without a clear path to cloud computing, many agencies continue to maintain on-premises solutions.

Mary Davie

Jun 08, 2017

Federalist Is out of Beta and Open for Business

If you’re a program manager or a federal web developer you’ve probably been given a seemingly simple task: Create a basic website as part of a new initiative at your agency. The hardest part is often not crafting the content or designing the prototype, but getting the security and privacy compliance in order to launch

Will Slack

Jonathan Hooper

Jun 05, 2017