ANALYTICS: Incident Response – A Challenge For 98% Of InfoSec Pros. Too many alerts and too little staff leave security pros swimming in threat intel and begging for automation. According to a recent survey, ninety-eight percent of IT security pros find incident response to be a challenge and 71% say it’s grown more difficult over the past two years. Read more
FEDERAL GOVERNMENT: Warner – Procurement and Personnel Key for Cyber. Fixing the way the U.S. government buys technology and hires and deploys its workforce is the key to improving the nation’s cybersecurity defenses, not changing the way authorities and responsibilities are divided up between federal agencies, said Sen. Mark Warner, D-Va. Find out more
NSA: Hackers Find an Easy Path to U.S. Systems. For all the concern about zero-day exploits, a senior NSA official said that the high-profile hacks of U.S. networks in the last two years show there are far easier ways for cybercriminals to infiltrate government systems. Curtis Dukes, deputy national manager for national security systems at the NSA, said that none of the high-profile government hacks the NSA responded to — Office of Personnel and Management, the White House, State Department, Department of Defense — used zero-day exploits. Find out more
CYBER-EXPOSURE: No Standard Cyberinsurance Policy for Government Exists. While offsetting the cost of a data breach is the most common coverage for cyberinsurance, policies may cover physical cyber-risks as well, such as the danger of attacks on utilities and medical facilities, and property damage and injury from cyberattacks. Read the rest
NOW ON SLIDESHARE: Tech Update Summary from Blue Mountain Data Systems September 2016 http://www.slideshare.net/BMDS3416/tech-update-summary-from-blue-mountain-data-systems-september-2016.
IT SECURITY SUPPORT: Blue Mountain Data Systems is actively involved in implementing FISMA and NIST standards with Federal Civilian Agencies. Due to our extensive experience in this area, Blue Mountain has developed processes and organizational techniques to help ensure security deliverables are completed on time, and performed in the most efficient manner possible. We ensure that NIST-800-53 control requirements are treated consistently during definition, analysis, implementation, auditing, and reporting phases of a system. Find out more about Blue Mountain Data Systems IT Security Support Services. Call us at 703-502-3416.
BLUE MOUNTAIN DATA SYSTEMS HAS THE EXPERIENCE: 1994 to Present – U.S. Dept. of Labor, Employee Benefits Security Administration. Responsible to the Office of Technology and Information Systems for information systems architecture, planning, applications development, networking, administration and IT security, supporting the enforcement of Title I of the Employee Retirement Income Security Act — ERISA. Within the EBSA, Blue Mountain is responsible for design, development and support for its various enforcement database management systems, as well as all case tracking and customer service inquiry systems. Blue Mountain also provides IT security services to the EBSA, in the form of FISMA Assessment and Authorization, System Security Plans, Risk and vulnerability assessments, monitoring and investigation support. Read more.