binding operational directive

CISA launches platform to allow hackers to report flaws in federal tech

by • 12 months ago

Agencies will use the shared service to receive security feedback from white-hat hackers around the world.

What one bug bounty platform’s FedRAMP authorization means for the industry

by • 2 years ago

HackerOne beat its competitors to federal cloud services authorization, allowing it to deliver the kind of vulnerability disclosure platform sought for agencies governmentwide.

DHS, agencies need to improve compliance on cybersecurity directives, GAO says

by • 2 years ago

The congressional watchdog took a close look at implementation of the binding operational directives (BODs) that DHS issued to civilian agencies through December 2018.

‘We should be setting the example’ for private sector cybersecurity, U.S. CISO says

by • 3 years ago

U.S. CISO Grant Schneider says the government "should be setting the example for how organizations should look at cybersecurity."

DHS orders agencies to patch faster

by • 3 years ago

DHS’s Cybersecurity and Infrastructure Security Agency now gives agencies 15 days after discovery to fix vulnerabilities deemed critical.