• Matross Edwards

GovCon & Cyber Weekly Debrief (3/9–13)


This week's Weekly Debrief covers a couple of interesting topics, including the latest on COVID-19, corrective action on JEDI, NIST exploring agency DevSecOps framework, and CISA stress tests telework capacity at DHS.


Federal Times – Agencies prep for mass telework as coronavirus looms

  • "With coronavirus spreading across the United States, several federal agencies are taking necessary steps to prepare their networks in case telework becomes mandatory."

SBA.gov – Guidance for Businesses and Employers to Plan and Respond to Coronavirus Disease 2019 (COVID-19)

  • "The SBA will work directly with state Governors to provide targeted, low-interest loans to small businesses and non-profits that have been severely impacted by the Coronavirus (COVID-19). The SBA’s Economic Injury Disaster Loan program provides small businesses with working capital loans of up to $2 million that can provide vital economic support to small businesses to help overcome the temporary loss of revenue they are experiencing."

JDSupra – COVID-19: Addressing the Risks of Disease, Delays, and Disruptions Under Federal Contracts

  • "The COVID-19 outbreak is disrupting business around the world. The disruption stems from sick personnel unable to report to work, declines in the capital markets, and actions taken by governments and companies alike directing workers to stay home or ordering the closure of manufacturing plants or offices until the disease is under control."


NextGov – EXCLUSIVE: Pentagon to Take Corrective Action on JEDI

  • "The Pentagon has asked a federal judge for a 120-day remand to “reconsider its evaluation” and take corrective action on the lucrative JEDI cloud contract it awarded to Microsoft in October, which could be worth as much as $10 billion over the next decade. In a legal filing Thursday evening, the Pentagon asked Judge Patricia Campbell-Smith for an adjournment to address “various aspects” of its JEDI evaluation highlighted by Amazon, which protested the JEDI award in November."


FedScoop – NIST exploring possible DevSecOps framework for agencies

  • ​"The National Institute of Standards and Technology is exploring development of DevSecOps guidance for agencies that would normalize the concept of moving security “left,” back into the software development life cycle."


FCW – CISA stress tests DHS telework capacity

  • ​"The Cybersecurity and Infrastructure Security Agency will stress test the Department of Homeland Security's remote working capabilities today as the federal government continues to grapple with fallout from the coronavirus outbreak."


This week's Weekly Debrief includes articles covering a number of topics, including NIST exploring DevSecOps framework for agencies, the Cyberspace Solarium Commission's warning, ransomware gangs targeting larger targets, and data privacy news in Washington and NJ.


FedScoop – NIST exploring possible DevSecOps framework for agencies

  • ​"The National Institute of Standards and Technology is exploring development of DevSecOps guidance for agencies that would normalize the concept of moving security “left,” back into the software development life cycle."

DarkReading – Cyberspace Solarium Commission Slams US Cybersecurity Readiness

  • ​"A new report released today from the federal Cyberspace Solarium Commission opens with a dire warning: 'Our country is at risk, not only from a catastrophic cyberattack but from millions of daily intrusions disrupting everything from financial transactions to the inner workings of our electoral system.'"

DataBreachToday – Ransomware Gangs Hit Larger Targets, Seeking Bigger Paydays

  • ​"Targeted ransomware attacks continue to increase as gangs seek to obtain bigger ransom payoffs from larger targets, security experts warn. While attacks against individuals and mom-and-pop shops persist, today's more prized targets are big businesses with deep pockets, John Fokker, head of cyber investigations and red teaming for McAfee Advanced Threat Research, tells Information Security Media Group (see: Ransomware Attacks Growing More Targeted and Professional)."

CSO Online – 6 security metrics that matter – and 4 that don’t

  • ​"One of the most challenging executive tasks for CISOs is quantifying the success and the value of the cybersecurity function.Indeed, security leaders and their organizations have used a myriad of metrics over the years. Yet, many executives and board members have complained that those measures failed to provide them with adequate insight or understanding of how well the security department is performing, how it’s improving, and where it’s falling short."


GeekWire – Data privacy regulations fail in Washington state legislature

  • ​"A bill that would have enacted data privacy regulations in Washington state failed to pass the state legislature before the session ended Thursday. The bill sought to have the state follow the lead of the European Union and California, the first major governments to grant consumers broad rights for privacy online."

PYMNTS.com – NJ Joins States’ Push For Data Privacy Regulations

  • ​"The march toward state-by-state regulation of Big Tech continues. To that end, lawmakers in New Jersey last week proposed legislation that would toughen data privacy guidelines and limit the information that tech companies can gather (and use) from consumers in that state.  With the proposal, New Jersey joins other states such as Washington and Illinois, which have debuted data privacy legislation. Those states also join California, where its Consumer Privacy Act went into effect at the dawn of 2020."

NextGov – Don't Let Data Die in the Dark

  • "Who doesn’t have a drawer full of items they might need at some point, but haven’t used in months or even years? We’re all familiar with unintentional hoarding of things that may have been useful at one point but end up collecting dust and taking up unnecessary space. The same is true of data but holding on to it for too long can have serious consequences."

. . .

#govconjudicata #cyberjudicata #weeklydebrief

Recent Posts

See All

Weekly Debrief (6/21–25)

This week's Weekly Debrief covers the CMMC, defense contractor vulnerabilities and supply chain logistics, FAA legislation, possible IRS spending boost, and a GMU study regarding financial dynamics of

Weekly Debrief (6/14–18)

This week's Weekly Debrief covers the Juneteenth federal holiday, federal data strategy, GSA STARS III awards, Army modernization, and "BRAC for VA." White House GovExec – Most Federal Employees Will

Weekly Debrief (6/7–11)

This week's Weekly Debrief covers the Biden administration's spending plans, Defense software issues, CMMC costs, joint DoD/VA medical center, Space Force digital workforce, and DoD wants funding for