PENETRATION TESTING
DIGITAL GOVERNMENT: Security, Privacy, Usability – The 3 Legs of Login.gov Platform. The government’s fourth attempt to build a single sign-on identity management capability for federal services is off to a better start than its predecessors. The General Services Administration launched the Login.gov platform in April. The platform, which already has five agencies ready to test it out, experienced a spike of user accounts in October. Joel Minton, the director of the Login.gov platform run by GSA’s 18F organization, said they are driving privacy, security and usability to give citizens confidence in using federal services. Read more
[FEDERALNEWSRADIO.COM]
SECURITY: The White Hat Brigade. The fight against cybercriminals involves a whole range of different offensive and defensive measures, from devices with built-in smart security to intelligent analytics tools that can watch the network for aberrant behaviour. Who might suspect, however, that one of the strongest weapons in the battle against hackers might be, well, other hackers? Whether they’re expert security professionals with a deep understand of how hacking works, or reformed ‘bad’ hackers who now use their powers for good, the white hat brigade is here to stay. Read more.
[ITPRO.CO.UK]
INTERVIEW: Life in the Trenches: a Penetration Tester Speaks. The fear of a loss of reputation is the primary motivator for organisations to seek penetration testing of their networks, to find out how secure they are against likely intruders, according to a senior penetration tester with security firm SecureWorks. Find out more
[ITWIRE.COM]
STATE GOVERNMENT: Securing the Government Cloud: Tips for Screening SaaS Products. Some vendors mislead their customers when it comes to cybersecurity. Everlaw CEO AJ Shankar shares a few questions that should be asked to keep them honest. Read more
[STATESCOOP.COM]
==========
NOW ON SLIDESHARE: Tech Update Summary from Blue Mountain Data Systems September 2017 https://www.slideshare.net/BMDS3416/tech-update-summary-from-blue-mountain-data-systems-september-2017.
IT SECURITY SUPPORT: Blue Mountain Data Systems is actively involved in implementing FISMA and NIST standards with Federal Civilian Agencies. Due to our extensive experience in this area, Blue Mountain has developed processes and organizational techniques to help ensure security deliverables are completed on time, and performed in the most efficient manner possible. We ensure that NIST-800-53 control requirements are treated consistently during definition, analysis, implementation, auditing, and reporting phases of a system. Find out more about Blue Mountain Data Systems IT Security Support Services. Call us at 703-502-3416.
BLUE MOUNTAIN DATA SYSTEMS HAS THE EXPERIENCE: 1994 to Present – U.S. Dept. of Labor, Employee Benefits Security Administration. Responsible to the Office of Technology and Information Systems for information systems architecture, planning, applications development, networking, administration and IT security, supporting the enforcement of Title I of the Employee Retirement Income Security Act — ERISA. Within the EBSA, Blue Mountain is responsible for design, development and support for its various enforcement database management systems, as well as all case tracking and customer service inquiry systems. Blue Mountain also provides IT security services to the EBSA, in the form of FISMA Assessment and Authorization, System Security Plans, Risk and vulnerability assessments, monitoring and investigation support. Read more.
==========