This agency is preparing to score its cyber risk with a new algorithm
“From the time that the scores come online, what gets measured gets done,” said the manager of the Continuous Diagnostics and Mitigation program.
What keeps federal cyber experts up at night about CDM
NASA is an early CDM success story, but continuous monitoring tools need maintaining.
FedRAMP issues new continuous monitoring guidance and requirements
FedRAMP issued new documents detailing the requirements needed for automated scanning.
FedRAMP looking at third-party access in upcoming authorization boundary guidance
FedRAMP previewed upcoming guidance it will issue on the external services cloud service providers should document for continuous monitoring compliance.
FedRAMP’s ‘year of refinement’ emphasizes improvements to continuous monitoring
In 2018, the office is looking to fine-tune the guidance it’s using to connect cloud service providers with federal agencies.
AbilityOne Commission needs stronger cyber controls, IG says
An IG report found the AbilityOne Commission’s cyber posture fell short of FISMA reporting compliance.