"[W]e have initiated a new series of audits looking for indicators of compromise on HHS and OPDIV systems to determine whether an active threat exists on HHS networks or whether there has been a past breach by threat actors," a new report says.

The National Cyber Range Complex (NCRC) Event Planning, Operations, and Support event will now take place Nov. 27-28, followed by one-on-one meetings with attendees afterward.

The FITARA Scorecard, Hurd explained, needs to evolve.

"The system is expected to be widely targeted by attackers," a GSA source sought notice says, and so 18F aims to identify pen-testers with proven ability.