Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

keeper

Why Federal Agencies Need Enterprise Password Management Despite Smart Card Authentication

Jan 30, 2025 By James Scobey, CISO In Keeper
As a former federal CISO, I’ve observed a persistent and dangerous misconception within government agencies: the belief that smart card authentication eliminates the need for enterprise password and Privileged Access Management (PAM) solutions. This assumption creates critical security vulnerabilities that deserve closer examination.
Read Post
neosystems

3 Critical Cybersecurity Gaps Affecting GovCons

Jan 21, 2025 By Megin Kennett In NeoSystems
Government contractors handling Controlled Unclassified Information (CUI) for the Department of Defense must navigate complex compliance requirements. Central to these requirements is the Cybersecurity Maturity Model Certification (CMMC), which mandates conformance to NIST SP 800-171 and DFARS 252. This framework encompasses 110 security requirements across 14 security domains, including Access Control, Audit and Accountability, Risk Assessment, Incident Response, and several others.
Read Post
cyphere

NCSC Cyber Assessment Framework (CAF)

Jan 17, 2025 By Harman Singh In Cyphere
Cyber incidents can result in catastrophic consequences. Cyber risks faced by public sector organisations need a plan. NCSC developed the cyber assessment framework (CAF) to help organisations achieve and demonstrate cyber resilience, specifically in, specifically by identifying the important functions at risk of disruption due to cyber incidents.
Read Post
keeper

FedRAMP Equivalent vs FedRAMP Authorized

Dec 19, 2024 By Teresa Rothaar In Keeper
The Federal Risk and Authorization Management Program (FedRAMP) is a U.S. government program designed to standardize and streamline the assessment, authorization and continuous monitoring of cloud computing services for federal agencies. It establishes a consistent set of security requirements for Cloud Service Providers (CSPs) to ensure their products meet the rigorous security and privacy needs of the federal government.
Read Post
splunk

Bridging the Cyber Confidence Gap: Digital Resilience in the Public Sector

Dec 11, 2024 By Mick Baccio In Splunk
In today’s digital age, achieving cyber resilience is no longer an option—it has become a necessity. Yet, according to the latest report by Splunk, conducted in collaboration with Foundry, a significant cyber confidence gap exists among public sector organizations in this critical area.
Read Post
keeper

How Governments Can Mitigate AI-Powered Cyber Threats

Dec 10, 2024 By Kim Howard In Keeper
Cybersecurity leaders across all levels of government are growing increasingly alarmed by the rise of cyber attacks fueled by Artificial Intelligence (AI). Cybercriminals are now incorporating machine learning and automation into their strategies, significantly boosting the scale, efficiency and sophistication of their attacks. According to a recent survey of over 800 IT leaders, a staggering 95% believe that cyber threats have become more advanced than ever before.
Read Post

Mastering Classified Systems Artifact Distribution to the Tactical Edge

Nov 7, 2024 By JFrog In JFrog
This JFrog webinar, hosted by our Public Sector partner Carahsoft, focused on automating the secure distribution of critical digital artifacts in air-gapped networks. For agencies, ensuring the integrity of these artifacts at the edge is paramount. Real-time access to mission-critical software for warfighters is essential, and timely software updates boost operational readiness and capabilities. Leveraging JFrog's latest tools, this approach significantly enhances operational capabilities for public sector agencies.
View Video
ignyte Team

Managing Foreign Government Information (FGI) on a Network

Oct 18, 2024 By Max Aulakh In Ignyte
If you’re a firm that works with foreign governments, in addition to certifications like ISO 27001 that you will generally need to achieve, you will also have to have processes in place for handling foreign government information or FGI. It’s not enough that your internal network is classified and access controlled; you need specific handling processes and procedures for managing FGI separately from other confidential or classified data you may have.
Read Post
elastic

Unlocking SOC as a Service with Elastic Security for public sector

Oct 9, 2024 By Michael Smith In Elastic
In today’s increasingly complex and evolving threat landscape, Security Operations Centers (SOCs) have become the nerve center for protecting critical national and local government assets. Building and maintaining an in-house SOC is often beyond the reach of many government agencies due to budget constraints, the need for skilled personnel, and the rapid growth of cyber threats.
Read Post
Rubrik

How Government Agencies Can Regain Control Over Who Has Access to Sensitive Public Data

Sep 25, 2024 By Alok Shah In Rubrik
We’re thrilled to announce the availability of User Intelligence on Rubrik Security Cloud - Government. Rubrik User Intelligence empowers Fed and SLED organizations with visibility into user activities, access patterns, and potential risks. This level of insight is critical for enforcing least-privilege access to sensitive data, before it results in breaches.
Read Post

Copyright © 2026 OpsMatters™. All rights reserved.