Latest News from Government Cyber Assurance

CORRECTING and REPLACING ACT-IAC Announces Participants for Inaugural MOC 2012 Technology Exhibitor Showcase

Thu, 17 May 2012 18:35:59 EDT

Please replace the release with the following corrected version due to multiple revisions.

ACT-IAC Announces Participants for Inaugural MOC 2012 Technology Exhibitor Showcase

Thu, 17 May 2012 17:24:22 EDT

The American Council for Technology and Industry Advisory Council (ACT-IAC) today announced the nine companies that will exhibit early entry technologies and applications at the 32nd annual Management of Change (MOC) 2012. The education and training event will take place June 3-5 at the Hyatt Regency Chesapeake Bay in Cambridge, Md. ACT-IAC today also released expanded information about the tracks and sessions, which will feature numerous government and industry experts and executives examining the latest challenges in mobility and security.

News International Scandal Sparks Concern about Business E-disclosure processes, New Survey Shows

Thu, 17 May 2012 16:15:18 EDT

Guidance Software, Inc. (NASDAQ:GUID) today released the findings from an independent survey revealing that 38%* of senior IT decision makers are more worried, since the News International phone hacking scandal broke, that they don’t have the right tools in place to respond to a similar litigation and investigation process. These findings come following widespread media coverage of the hacking and the ongoing legal investigations, and reveal that just 17% think that they already have the right tools in place should they be called upon to retrieve data for such a case.

White House Cybersecurity Coordinator Retiring, HTC Phones Blocked at Customs, and More

Thu, 17 May 2012 15:38:50 EDT

Here is today’s federal cybersecurity and information technology news: Howard Schmidt, the White House cybersecurity coordinator, will be stepping down at the end of this month. More here. Bruce McConnell, cyber-security counselor for the Department of Homeland Security, warned that if the private sector doesn’t make serious investments in cybersecurity, it risks losing “long term-competitiveness.” More [...]

ICASI Releases Update to Its Standardized XML Framework for Reporting IT System Vulnerabilities: CVRF Version 1.1

Thu, 17 May 2012 11:00:53 EDT

The Industry Consortium for Advancement of Security on the Internet (ICASI), a nonprofit association dedicated to enhancing global IT security by proactively driving excellence and innovation in security response, today announced the publication of the latest version of its Common Vulnerability Reporting Framework (CVRF), Version 1.1. Enhancements in CVRF 1.1 offer users a more comprehensive and flexible format, while reducing duplication and the possibility of errors.

FedRAMP PMO Releases First Set of 3PAOs

Mon, 14 May 2012 17:41:00 EDT

Late today the FedRAMP Program Management Office released the first list of certified Third Party Assessment Organizations (3PAOs). These companies are accredited to perform initial and periodic assessment of cloud service provider (CSP) systems per FedRAMP requirements, provide evidence of compliance, and play an on-going role in ensuring CSPs meet requirements. FedRAMP provisional authorizations must include an assessment by an accredited 3PAO to ensure a consistent assessment process. he initial set of 3PAOs announced today are (see http://www.gsa.gov/portal/content/131991):

Polycom to Showcase Avaya-Interoperable Polycom® RealPresence® Video and Voice Solutions at International Avaya Users Group Global Education Conference 2012

Thu, 17 May 2012 08:30:57 EDT

Polycom, Inc.:

The Fallacy of “Opting Out”

Thu, 17 May 2012 05:46:01 EDT

PJ Rey has a typically well-thought out post at Cyborgology on the problem with “opting out” media, with some significant implications for the way we think about technology and cybersecurity. Even a CTOVision reader may have a friend or relative (or both) that just doesn’t get why Facebook, Twitter, or LinkedIn is so important. Like [...]

A Request from the Security Innovation Network

Wed, 16 May 2012 17:42:00 EDT

The mission of the Security Innovation Network™ (SINET) is to advance innovation and enable global collaboration between the public and private sectors to defeat Cybersecurity threats. SINET increases awareness between builders, buyers, researchers and investors in the Cybersecurity domain, in particular the Defense Industrial Base and the Federal Government. SINET utilizes a top down – bottom up, mutually beneficial and trust based approach to accelerate innovation and increases business opportunities for both small and large companies. A key SINET activity is a yearly showcase where 16 top cybersecurity innovators are selected to present their products and technology to builders, investors, researchers and buyers to include US Federal Agencies and commerical entities at the National Press Club.

nCircle Announces ‘Real World Security’ Webinar

Wed, 16 May 2012 13:02:11 EDT

nCircle, the leader in information risk and security performance management solutions, today announced a new web seminar entitled “Real World Security: Maximizing the Value of Your Security Investments.”

What Isn’t Cyber War, Healthcare Vulnerabilities, and More

Wed, 16 May 2012 11:42:00 EDT

Today’s federal cybersecurity and information technology news: U.S. Army Cyber Command operational attorney Robert Clark said that the legal frameworks are not keeping pace with cyber operations and said that claims of “cyber war” do not qualify as war defined by international laws of armed conflicts. More here. The Federal Risk and Authorization Management Program named 9 third-party assessment organizations to evaluate federal cloud computing vendor security controls for FedRAMP compliance. More here. The Department of Homeland Security’s National Cybersecurity and Communications Integration Center warned healthcare organizations about the danger of insecure networked medical and mobile devices. More here. The Army is looking to fill an urgent need for tactical radios and may turn to General Services Administration contractors for help. More here.

Why You DO Need a Firewall

Wed, 16 May 2012 11:40:00 EDT

This week, our office came across an article by Roger A. Grimes entitled “Why you don’t need a firewall”. As a security professional working for a company whose responsibilities include firewall management, I found the article to be extremely shortsighted, and borderline offensive. Normally, I’d encourage you to read the article in question, but your time is most certainly better spent doing nearly anything else. I would highly recommend learning home dentistry as a suitable alternative activity. Grimes argues that firewalls are becoming increasingly less relevant, due to their inability to protect against attacks, the difficulty associated with managing the devices, and the availability of more effective defenses and solutions. The sheer number of logical fallacies spawning hasty generalizations in the article leads me to believe that it is intentionally written to provoke this type of discussion. With this in mind, I would like to address several of the author’s arguments from the perspective of a security engineer.

Tenable Network Security Named Top ‘Cyber Warrior’ at Baltimore SmartCEO VOLT Awards

Wed, 16 May 2012 10:17:21 EDT

Tenable Network Security, Inc., the leader in Unified Security Monitoring (USM), announced today that it has been awarded the Baltimore SmartCEO VOLT Award in the ‘Cyber Warrior’ category, recognizing Tenable as the top mid-size cybersecurity technology provider in the greater Baltimore area. Tenable was selected for its unique approach to vulnerability assessment and network monitoring. The company is revolutionizing the security landscape by moving organizations from point-in-time risk awareness to real-time risk assessment — arming enterprises with the intelligence to make the best possible security decisions to safeguard their networks from internal and external threats.

Leading Industry Analyst for Financial Services Cybercrime Prevention Joins Trusteer

Wed, 16 May 2012 09:36:25 EDT

Trusteer, the leading provider of endpoint cybercrime prevention solutions, today announced that former TowerGroup senior research director and online banking expert George Tubin has been appointed senior security strategist for the company. Mr. Tubin will spearhead Trusteer’s thought leadership and market education initiatives relative to online and mobile banking security. He will also focus on programs that inform enterprises on how they can use lessons learned from fighting financial malware to better protect corporate assets from targeted attacks.

Cenzic Managed Service Wins Best Security Service Award

Wed, 16 May 2012 09:02:05 EDT

Cenzic Inc., the leading provider of application security intelligence to reduce security risks, today announced that Network Products Guide, a leading technology and research advisory guide, has named Cenzic Managed Cloud (formerly ClickToSecure Managed), the winner in the Security Service category of the 2012 Hot Companies and Best Products Awards.

eIQnetworks Adds Namtek as Strategic Reseller Partner

Wed, 16 May 2012 08:03:31 EDT

eIQnetworks, Inc., the only global provider of a unified situational awareness solution, today announced the company has signed a strategic reseller agreement with Namtek Corp., an IT security systems integrator, to its roster of strategic reseller partners. Namtek's Governance, Risk Management & Compliance (GRC) practice solves complex security challenges for some of the most critical assets in the nation. Namtek architects and implements technologies, policies and procedures that most effectively protect sensitive data assets. eIQnetworks selectively forms alliances with the industry’s leading technology solution providers to enhance its SecureVue unified situational awareness platform, the industry’s first platform to combine next-gen SIEM, security configuration auditing, compliance automation and contextual forensic analysis – all in a single solution.

Actiance Solutions Now Available on Carahsoft GSA Schedule to Provide Public Sector With Support for the Growing Use of Social Networks and Unified Communications and Collaboration Platforms

Wed, 16 May 2012 08:00:12 EDT

Actiance (www.actiance.com), helping organizations benefit from new forms of communications and collaboration, today announced that its solutions are now available through Carahsoft's General Services Administration(GSA) Schedule from which federal, state and local government agencies procure IT products and services.

Federal Cybersecurity and IT News Round-Up

Wed, 16 May 2012 07:30:00 EDT

Today’s federal cybersecurity and information technology news: The U.S. Office of Naval Research is partnering with Chilean scientists to develop a mobile application to provide information helpful in countering pirates, arms traffickers, and illegal fishermen. More here. The Army’s 780th Military Intelligence Brigade. which handles cyber systems security and intelligence, is looking to hire 400 civilian employees. More [...]

Booz Allen Hamilton pour soutenir les entreprises et la croissance économique au Qatar

Wed, 16 May 2012 06:50:24 EDT

Booz Allen Hamilton (NYSE:BAH) a annoncé aujourd'hui l’obtention d’une autorisation de la part de l'Autorité Financière Qatarie pour exploiter les opportunités économiques dans le but de soutenir la diversification économique locale. La compagnie se basera sur son propre expérience pour fournir des services spécifiques aux clients gouvernementaux et aux entreprises relatifs aux importants sujets liés au développement de la nation, notamment, les domaines de la technologie de l’information, la cyber-sécurité le transport et d'autres infrastructures.

Lessons from Our Cyber Past: The First Cyber Cops

Tue, 15 May 2012 16:41:53 EDT

Tomorrow, Wednesday, May 16, 2012, the Atlantic Council will host a discussion with pioneers in cyber law enforcement and crime prevention moderated by Jay Healey. ”Lessons from Our Cyber Past: The First Cyber Cops” should offer some fascinating insight and I’ll be in attendance, so stop by and say hello. It will run from 1:30 PM to 3:30 [...]

Counter Terror Expo US Exhibitor Profiles

Tue, 15 May 2012 15:51:22 EDT

Counter Terror Expo US takes place May 16 through May 17, 2012 at the Washington Convention Center in Washington DC.

VAE nimmt als strategischer Partner am Forum zum Weltgipfel der Informationsgesellschaft 2012 teil

Tue, 15 May 2012 14:48:10 EDT

Die VAE sind beim Forum zum Weltgipfel der Informationsgesellschaft (World Summit of the Information Society)2012, das vom 14.-18. Mai in Genf stattfindet, durch einige ihrer einflussreichsten Organisationen und bedeutsamen Regierungsabteilungen und -ämter, einschließlich der Aufsichtsbehörde für die Telekommunikation (Telecommunications Regulatory Authority, TRA) vertreten. Die Veranstaltung wird von der Internationalen Fernmeldeunion (ITU), der United Nations Educational, Scientific, and Cultural Organization (UNESCO), dem United Nations Development Programme (UNDP) und der United Nations Conference of Trade & Development (UNCTAD) organisiert.

Jack Dorsey, Creator of Twitter, Named Cannes Lions 2012 Media Person of the Year

Tue, 15 May 2012 14:26:01 EDT

The Cannes Lions International Festival of Creativity is the world's largest celebration of creativity in communications and the most prestigious international annual advertising and communications awards. Each year, the Festival presents The Media Person of the Year Award to a prominent personality who is an influential figure in the development of today's media landscape, ultimately playing an integral part in shaping the future of the creative communications industry.

ACE Private Risk Services Adds Comprehensive Identity Protection and Fraud Resolution Services to Its High Net Worth Personal Insurance Program

Tue, 15 May 2012 13:27:20 EDT

ACE Private Risk Services, the high net worth personal insurance business of the ACE Group, today launched industry leading personal identity protection services to help clients guard against and recover from identity fraud, as well as manage their reputation in today’s technology-driven world – all at no additional cost. These services complement the identity fraud expense coverage that has always been part of the ACE Platinum Portfolio® personal insurance program.

Silver Tail Systems' Co-Founder Laura Mather Deemed One of Fast Company's Most Creative People in Business

Tue, 15 May 2012 12:43:10 EDT

was today recognized by Fast Company as one of 2012's Most Creative People in Business. This esteemed honor celebrates Mather's personal and professional achievements that are a direct result of her disruptive thinking that led to the innovation and rapid success of Silver Tail Systems.

Five9 Welcomes New Board Member Dave DeWalt

Tue, 15 May 2012 11:00:18 EDT

Five9, Inc., the leading provider of cloud-based contact center software, has announced the appointment of Dave DeWalt to the company’s Board of Directors. With a record of leadership in creating billions of dollars in shareholder value with several prominent technology companies, DeWalt’s experience will be valuable as Five9 enters its next phase of growth in the cloud contact center market. Already coming off of record revenue growth in 2011, Five9 increased its Q1 2012 revenue by 65 percent year-over-year.

KCG Granted 3PAO Status Under GSA FedRAMP Program

Tue, 15 May 2012 10:08:48 EDT

Knowledge Consulting Group (KCG), the leading provider of cybersecurity services to the federal government and commercial organizations, today announced that it has been accredited as a Third Party Assessment Organization (3PAO) under the Federal Risk and Authorization Management Program (FedRAMP) by the U.S. General Services Administration (GSA). As a FedRAMP accredited 3PAO, KCG is authorized to perform security assessments for Cloud Service Providers (CSPs) seeking FedRAMP provisional authorization.

Application Security, Inc. Pledges One Million Dollars Of Database Security Software To Help Enterprises Battle Data Breaches

Tue, 15 May 2012 09:35:47 EDT

In an effort to help organizations defend against the ongoing data breach epidemic, Application Security, Inc. (AppSecInc), the leading provider of database security solutions for the enterprise, today announced that it will give away up to one million dollars of database security software. Companies that choose to take advantage of the offer will receive a free one-year license of AppSecInc’s database security scanning and assessment tool. AppDetectivePro helps companies discover and identify all known and unknown databases on their network, scan for vulnerabilities and misconfigurations, investigate database access control violations, and provide a wealth of knowledge for remediation.

Three-Quarters of IT Professionals Fear Negative Brand Impact or Customer Experience as a Result of DDoS Attacks

Tue, 15 May 2012 09:35:11 EDT

Neustar, Inc., a trusted, neutral provider of real-time information and analysis to the Internet, telecommunications, entertainment and marketing industries, today released the results of a survey asking 1,000 IT professionals across North America about the business impact associated with distributed denial of service (DDoS) attacks. Among the findings, three-quarters of those surveyed cited impact on customer experience and brand as their greatest fears about the possible implications of DDoS attacks.

B. Riley & Co. Acted as Sole Book-Runner in $100 Million Underwritten Public Offering for Kratos Defense & Security Solutions, Inc.

Tue, 15 May 2012 09:25:15 EDT

B. Riley & Co., LLC (B. Riley) (www.brileyco.com), a leading independent investment bank which provides a full array of corporate finance, research, sales and trading services, announced today that it acted as sole book-running manager in a $100,000,000 underwritten public offering for Kratos Defense & Security Solutions, Inc. (NASDAQ: KTOS).

Telos Corporation Named Aruba 2012 Federal Partner of the Year

Tue, 15 May 2012 09:20:26 EDT

Telos® Corporation was named the Federal Partner of the Year during Aruba Networks’ 2012 Americas Partner Summit, held in Las Vegas, Nv., March 19 through 21.

Application Security, Inc. Partners With Carahsoft To Bring Database Security Software To Government

Tue, 15 May 2012 09:04:04 EDT

Application Security, Inc. (AppSecInc), the leading provider of database security solutions for the enterprise, and Carahsoft Technology Corp., the trusted government IT solutions provider, today announced a partnership through which the companies will make AppSecInc’s industry-leading database security software and services available to the public sector via Carahsoft’s GSA schedule.

Texas Memory Systems’ RamSan-810 Flash storage Makes the Grade at Penn State University

Tue, 15 May 2012 08:35:23 EDT

Texas Memory Systems, Inc., provider of The World's Fastest Storage^®, today announced that the Research Computing and Cyber-infrastructure group(RCC) at Penn State University has implemented a RamSan-810 SSD system to dramatically reduce its nightly backup times while improving IOPS performance and minimizing related power, cooling and floor space costs.

GamersFirst Puts Corero Network Security in Play to Keep Its Online Gaming Service Up 24x7

Tue, 15 May 2012 08:32:13 EDT

Corero Network Security (CNS: LN), the leading global provider of Distributed Denial of Service (DDoS) defense and Next Generation Intrusion Prevention Systems (NGIPS), today announced GamersFirst has selected its technology to mitigate DDoS attacks, which were disrupting online play, and provide comprehensive intrusion prevention against malicious content attacks.

Agari Email TrustIndex Applies Big Data Insight to Reveal Online Travel & Internet Retail Verticals Most Vulnerable to Email Attack; Social Media and Finance Advance, Embracing Trust

Tue, 15 May 2012 08:02:01 EDT

and rates Online Travel and Internet Retail as least trusted and most vulnerable to email attack.

Sypris Reports First Quarter Results

Tue, 15 May 2012 07:45:40 EDT

Sypris Solutions, Inc. (Nasdaq/NM: SYPR) today reported financial results for its first quarter ended April 1, 2012.

Cyberwar 1.0: China vs The USA…We’re in Trouble!

Tue, 15 May 2012 06:00:00 EDT

“In the past year, one in seven large organizations detected hackers within their systems.” This is the highest level recorded, said the recently released PwC 2012 Information Security Breaches Survey. It was completed in conjunction with Infosecurity Europe and supported by the Department for Business, Innovation and Skills.

McAfee Aims to Protect Critical Infrastructure from Increased Attacks

Tue, 15 May 2012 00:01:22 EDT

McAfee announced a collaboration with Intel to better protect the world’s energy utility ecosystem, including generation, transmission and distribution, from increased cyber attacks. The two companies have provided a blueprint for a comprehensive solution of multiple products that create layers of security and operate together without great complexity or without impacting availability.

Domestic Drone Policy, Federal Telework, and More

Mon, 14 May 2012 18:13:17 EDT

Today’s federal cybersecurity and information technology news: Pilots, aircraft manufacturers, and privacy groups ask the Federal Aviation Administration to ensure drones could not be hijacked or jammed and that they would not cause problems for manned aircraft before it allows their widespread domestic use. More here. Department of Homeland Security Chief Information Officer Richard Spires said [...]

En tant que partenaire stratégique, Les Émirats Arabes Unis participent au Sommet Mondial autour de la Société de l'Information 2012

Mon, 14 May 2012 11:06:20 EDT

Les Émirats Arabes Unis représentés par certains de ses plus importantes organisations, départements et bureaux gouvernementaux dont l'Autorité de Régulation des Télécommunications participeront au Sommet Mondial sur la Société de l'Information 2012 qui se tiendra entre le 14 et le 18 Mai à Genève en Suisse. L'événement est organisé par l'Union International des Télécommunications, et l'Organisation des Nations unies pour l'éducation, la science et la culture (UNESCO), le programme des nations unies pour le développement (PNUD) et la Conférence des Nations Unies sur le Commerce et le Développement (CNUCED).

Booz Allen Hamilton to Support Business and Economic Growth in Qatar

Mon, 14 May 2012 10:25:07 EDT

Booz Allen Hamilton (NYSE: BAH) announced today it has been licensed by the Qatar Financial Centre Authority to pursue business opportunities in Qatar in support of domestic economic diversification. The firm will focus its expertise on providing specialist services to government and commercial clients on critical issues related to the nation’s development, most notably in the areas of information technology, cyber security and transportation and other selected infrastructure.

UAE Participates in the World Summit of the Information Society Forum 2012 as a Strategic Partner

Mon, 14 May 2012 08:44:19 EDT

The UAE is represented by some of its most influential organizations and significant governmental departments and offices, including the Telecommunications Regulatory Authority (TRA) at the World Summit of the Information Society Forum 2012 taking place from May 14-18, in Geneva, Switzerland. The event is organized by the International Telecommunication Union (ITU), the United Nations Educational, Scientific, and Cultural Organization (UNESCO), the United Nations Development Programme (UNDP), and the United Nations Conference of Trade & Development (UNCTAD).

Qualys Enlists New Security and Industry Experts to Its CTO/CSO Advisory Board

Mon, 14 May 2012 08:00:04 EDT

join information security leaders from eBay, Goldman Sachs, Microsoft, PayPal, and other leading companies. The Advisory Board meets quarterly to discuss top priorities and challenges for securing global infrastructures, providing strategic direction for product development at Qualys.

Cloud Expo New York Speaker Profile: Jill T. Singer – NRO

Mon, 14 May 2012 07:15:00 EDT

With Cloud Expo 2012 New York (10th Cloud Expo) now only four weeks away, what better time to introduce you in greater detail to the distinguished individuals in our incredible Speaker Faculty for the technical and strategy sessions at the conference... We have technical and strategy sessions for you every day from June 11 through June 14 dealing with every nook and cranny of Cloud Computing and Big Data, but what of those who are presenting? Who are they, where do they work, what else have they written and/or said about the Cloud that is transforming the world of Enterprise IT, side by side with the exploding use of enterprise Big Data – processed in the Cloud – to drive value for businesses...?

INSIDE Secure Extends Leadership in Security Expertise

Mon, 14 May 2012 07:02:37 EDT

INSIDE Secure, (NYSE Euronext Paris FR0010291245 – INSD.PA), a leader in semiconductor solutions for secure transactions and digital identity, today announced the launch of a new set of security devices designed to address the emerging security threats in the fast growing universe of net-connected devices, objects and people (“The Internet of Things”). With 16, 32 or 64K bytes of file system memory, the new VaultIC devices have been designed to offer strong security and pin-to-pin compatibility with current VaultIC modules, while significantly reducing overall cost, package size and printed circuit board (PCB) space.

Cubic Names New Vice President, Legislative Affairs

Mon, 14 May 2012 07:00:16 EDT

Cubic Corporation (NYSE: CUB) has named Andy Jazwick as its vice president, legislative affairs.

Cyber Physical Systems Virtual Organization Holds National Symposium

Mon, 14 May 2012 07:00:00 EDT

On 11 June 2012 the Cyber Physical Systems Virtual Organization will be holding a symposium on Moving Target Research. In this context, think of Moving Target as meaning the creation of a dynamic attack surface to adversaries done in a way that dramatically increases the work factor required to successfully attack a system. This cybersecurity research [...]

Netronome Reaps Significant Power, Performance and Area Benefits With Cadence Encounter Digital Technology

Mon, 14 May 2012 02:00:04 EDT

Cadence Design Systems, Inc. (NASDAQ: CDNS), a leader in global electronic design innovation, announced today that Netronome, the leading developer of intelligent network flow processors (NFP), gained a significant performance advantage on its low-power "green" SoCs by using the Cadence® Encounter® RTL-to-GDSII flow. In addition to increased chip performance, Netronome engineers using the latest Encounter 11.1 technology achieved a 29% reduction in power consumption, smaller design area and faster overall time to market compared to their former flow, for SoCs targeting the secure virtualized cloud and data center markets.

FBI Warns Travelers of Pop-up Window Cyber-Attacks

Mon, 14 May 2012 00:28:06 EDT

If you’re traveling abroad, your laptop could be attacked. That much, is certain, according to the U.S. Federal Bureau of Investigation, which warned this week that hackers are “targeting travelers abroad through pop-up windows while establishing an internet connection in their hotel rooms.” Read the full story at CNN.

Cisco, Cognitec, Keyscan, Pelco, Videx and Wave Systems Discuss Security Solutions in SecurityStockWatch.com Thought Leadership Interviews

Mon, 14 May 2012 00:01:47 EDT