secure by design Archives

Playbook advises federal grant managers how to build cybersecurity into their programs

The guidance comes from the Office of the Director of National Cybersecurity and the Cybersecurity and Infrastructure Security Agency.

Dec 17, 2024 By Tim Starks

Rep. Andrew Garbarino, R-N.Y., chair of the House Homeland Security Subcommittee on Cybersecurity and Infrastructure Protection, holds a hearing on CISA’s secure-by-design initiative on Dec. 5, 2024, in Washington, D.C. (Screenshot)

Industry leaders on CISA’s secure-by-design pledge: A great program with some issues

House lawmakers and witnesses weighed in on secure-by-design incentives, subpar developers and the initiative’s future under new CISA leadership.

Dec 5, 2024 By Matt Bracken

CISA sees elimination of ‘bad practices’ as next secure-by-design step

Officials at the cyber agency are doubling down on shifting the security onus to software makers.

Oct 28, 2024 By Matt Bracken

Cyber, internet security and privacy concept. (Getty Images)

Organizations can substantially lower vulnerabilities with secure-by-design practices, report finds

Ex-National Cyber Director Inglis says “quantitative data” in Secure Code Warrior’s report shows the importance of the cybersecurity practice.

Oct 15, 2024 By Christian Vasquez

Jen Easterly, director of the Homeland Security Department’s Cybersecurity and Infrastructure Security Agency, testifies before the House (Select) Strategic Competition Between the United States and the Chinese Communist Party Committee on Capitol Hill on January 31, 2024 in Washington, DC. (Photo by Kevin Dietsch/Getty Images)

Easterly: Cybersecurity is a software quality problem

The head of the Cybersecurity and Infrastructure Security Agency wants to see major changes in how companies develop software.

Aug 9, 2024 By Christian Vasquez

U.S. President Joe Biden speaks from the Oval Office of the White House on July 24. (Photo by Evan Vucci-Pool/Getty Images)

Biden’s cybersecurity legacy: ‘a big shift’ to private sector responsibility

Over the course of his term, Joe Biden has presided over an ambitious agenda on regulation and more, to both praise and criticism.

Jul 29, 2024 By Tim Starks

Microsoft Corporate Vice President, Windows and Devices Pavan Davuluri speaks about Recall during a Microsoft event in Redmond, Washington, on May 20, 2024. (Photo by Jason Redmond / AFP)

Microsoft’s Recall puts the Biden administration’s cyber credibility on the line

Why has the White House remained silent on the launch of a product that violates the spirit and letter of its flagship cybersecurity initiatives?

Jun 12, 2024 By Gavin Wilde

Eric Goldstein, executive assistant director for cybersecurity at CISA, speaks during the Elastic Public Sector Summit 2024. (Scoop News Group photo)

Departing top CISA official reflects on nearly four years in the cyber hot seat

Eric Goldstein spoke with CyberScoop about where the Cybersecurity and Infrastructure Security Agency has made progress, lessons learned and what’s next.

May 17, 2024 By Tim Starks

Top CISA official Eric Goldstein to depart agency next month

Goldstein has served as the executive assistant director for cybersecurity and worked on a number of key priorities for the agency.

May 16, 2024 By Tim Starks

CISA Director Jen Easterly testifies before a House Homeland Security Subcommittee on April 28, 2022, in Washington, D.C. (Photo by Kevin Dietsch/Getty Images)

Dozens of tech companies pledge to build safer, more secure tech

The commitments are voluntary, but CISA officials said they are committed to measuring progress by the signatories across key commitments over the next year.

May 8, 2024 By Derek B. Johnson