NIST Reworks Cyber Guidelines for the Hacking Era

Aliya Sternstein, Nextgov,  Tuesday, April 30, 2013

The National Institute of Standards and Technology has rewritten federal cybersecurity standards for the first time in nearly a decade to address evolving smartphone vulnerabilities and foreign manipulation of the supply chain, among other new threats.

R&D center to offer 'building blocks' of cybersecurity

William Jackson, Government Computer News,  Tuesday, April 30, 2013

There is no lack of commercially available tools to counter rapidly evolving cyber threats, but putting them into place and having them work together efficiently can be a challenge.

Cloud Computing and Government

Jeff Gould by Jeff Gould, SafeGov.org
Tuesday, April 30, 2013

This video produced by EletsTV was filmed at a "Cloud Computing and Government" symposium held in New Delhi, India on April 30th. This video features SafeGov's Jeff Gould speaking about the challenges of implementing cloud computing solutions for public sector customers in international markets.

Follow Feds To The Cloud

Michael A. Davis, InformationWeek Goverment,  Monday, April 29, 2013

It's not often that IT teams charged with new projects and initiatives say, "Let's look at how the feds are doing things." The U.S. government's IT systems are seen as slow, archaic and overly complex -- think the Veterans Affairs Department's huge claims backlog and the sorry state of the National Instant Criminal Background Check System, which handles only 6% of requests electronically. But thanks to the "Cloud First" and open data sharing initiatives that former federal CIO Vivek Kundra mandated, the government is an innovator when it comes to cloud computing and data security.

Comment: Why the 'cloud broker' concept is broken

Diana Gowen, Federal Computer Week,  Monday, April 29, 2013

There has been a lot of talk lately that the federal government should hire private-sector intermediaries to "broker" the sale of cloud computing services to government agencies. But why should the government pay third-party brokers to purchase cloud services on its behalf when it can buy them right now directly from a pre-approved vendor?

OCR: Healthcare organizations unaware of privacy regulations

Dan Bowman, FierceHealthIT,  Friday, April 26, 2013

Recent HIPAA audits of provider and payer organizations conducted by contractor KPMG on behalf of the U.S. Department of Health & Human Services determined that many in the industry don't know which privacy regulations apply to them. An analysis of the audits by the HHS Office for Civil Rights unveiled this week found that out of 980 problems identified during 115 audits conducted last year, 289 (30 percent) were due to ignorance on the part of organizations. "Most of these related to elements of the Rules that explicitly state what a covered entity must do to comply," the analysis says.

BYOD: Why managing devices not enough

Andreas Baumhof, Federal Computer Week,  Friday, April 26, 2013

As part of the Digital Government Strategy, agencies are embracing mobile computing and developing policies to address the emerging bring-your-own-device trend. Developing BYOD policies is beneficial because they will help agencies reduce costs and increase productivity. But federal agencies have particular challenges when it comes to implementing BYOD: They handle data that must be protected for reasons of national security or taxpayer privacy, and they are the targets of a determined subset of attackers.

In the near future, 'cloud computing' will just be 'computing'

Rutrell Yasin, Government Computer News,  Thursday, April 25, 2013

Three years from now federal managers won’t have debates about the benefits of cloud computing because most will assume that services are being delivered via some type of cloud infrastructure. Instead, they will be talking about big data; how they can get better access to data and ask more intelligent questions of the data, says Shawn Kingsberry, CIO of the Recovery Accountability and Transparency Board.

HIPAA Omnibus: Guidance Coming

Marianne Kolbasuk McGhee, HealthcareInfoSecurity,  Thursday, April 25, 2013

The Department of Health and Human Services will issue a "suite" of guidance to help healthcare providers, business associates and patients better understand how to comply with the HIPAA Omnibus Rule, an HHS attorney says.

FTC Issues FAQ Guidance on Updated Childrens Privacy Rules

Katy Bachman. Adweek,  Thursday, April 25, 2013

Four months after the Federal Trade Commission passed sweeping updates to the children's online privacy law, the agency released a key document that websites and mobile apps directed to children will need to consult in order to become compliant by July 1.