INCIDENT RESPONSE
CYBERSECURITY: Distributed Denial of Service Attacks – Four Best Practices for Prevention and Response. In November 2016, Internet users across the eastern seaboard of the United States had trouble accessing popular websites, such as Reddit, Netflix, and the New York Times. As reported in Wired Magazine, the disruption was the result of multiple distributed denial of service (DDoS) attacks against a single organization: Dyn, a New Hampshire-based Internet infrastructure company. DDoS attacks can be extremely disruptive, and they are on the rise. The Verisign Distributed Denial of Service Trends Report states that DDoS attack activity increased 85 percent in each of the last two years with 32 percent of those attacks in the fourth quarter of 2015 targeting IT services, cloud computing, and software-as-a-service companies. Find out more
[INSIGHTS.SEI.CMU.EDU]
STATE GOVERNMENT: How Government Can Become More like Amazon. Colorado CIO Suma Nallapati wants to transform IT systems so that people look forward to interacting with government. Find out more
[GOVTECH.COM]
SLIDESHOW: 6 Security Best Practices You Need to Have In Place. Information security firm ID Experts recently engaged a number of thought leaders that included attorneys, insurance executives and security professionals to share six best practices on preparing for and responding to a data breach. Here is what they want you to know. Find out more
[INFOMATION-MANAGEMENT.COM]
GOVERNMENT: Hackers Expect Replies, Not Rewards, for Finding Bugs. More than 9 in 10 cybersecurity researchers who find software vulnerabilities generally let the makers know and coordinate their disclosure, according to a survey from a Commerce Department working group. Find out more
[CYBERSCOOP.COM]
==========
NOW ON SLIDESHARE: Tech Update Summary from Blue Mountain Data Systems November 2016 http://www.slideshare.net/BMDS3416/tech-update-summary-from-blue-mountain-data-systems-november-2016.
IT SECURITY SUPPORT: Blue Mountain Data Systems is actively involved in implementing FISMA and NIST standards with Federal Civilian Agencies. Due to our extensive experience in this area, Blue Mountain has developed processes and organizational techniques to help ensure security deliverables are completed on time, and performed in the most efficient manner possible. We ensure that NIST-800-53 control requirements are treated consistently during definition, analysis, implementation, auditing, and reporting phases of a system. Find out more about Blue Mountain Data Systems IT Security Support Services. Call us at 703-502-3416.
BLUE MOUNTAIN DATA SYSTEMS HAS THE EXPERIENCE: 1994 to Present – U.S. Dept. of Labor, Employee Benefits Security Administration. Responsible to the Office of Technology and Information Systems for information systems architecture, planning, applications development, networking, administration and IT security, supporting the enforcement of Title I of the Employee Retirement Income Security Act — ERISA. Within the EBSA, Blue Mountain is responsible for design, development and support for its various enforcement database management systems, as well as all case tracking and customer service inquiry systems. Blue Mountain also provides IT security services to the EBSA, in the form of FISMA Assessment and Authorization, System Security Plans, Risk and vulnerability assessments, monitoring and investigation support. Read more.
==========