• Matross Edwards

GovCon & Cyber Weekly Debrief (4/20–24)


This week's Weekly Debrief covers several interesting topics, including CISA incorporating aspects of the CMMC into new guidance, a CMMC-AB RFP for continuous monitoring, State's intel via open-source data, Space acquisition, and a JEDI update.


NextGov – CISA’s Coming Supply Chain Guidance to Align with Pentagon’s Vendor Certification Program

  • ​"A Cybersecurity and Infrastructure Security Agency task force will release supply chain guidance that incorporates aspects of the Pentagon’s Cybersecurity Maturity Model Certification program, a CISA official said."

NextGov – The Pentagon’s Cybersecurity Certification Plan Includes Continuously Monitoring Contractors

  • ​"The accreditation body overseeing the Defense Department’s Cybersecurity Maturity Model Certification program—the CMMC-AB—issued a request for proposal that provides insight into how the group plans to keep track of contractors outside of conducting physical audits."


FederalNewsNetwork – State Dept. intel ‘doing more outside of the SCIF’ with open-source data

  • ​"Before coronavirus pandemic, parts of the intelligence community were already preparing to deal with another major disruption to the way it does business: The rise of emerging technology."


FCW – Navy CIO: Future networks hinge on flexible acquisitions now

  • ​"The Navy wants to rebuild its legacy networks but needs to speed up its acquisitions first, according to Aaron Weis, the military service's CIO."

C4ISRNet – Upcoming report to Congress on space acquisition expected to be ‘groundbreaking’

  • ​"Senior Defense Department officials are reviewing a report on reforming space acquisitions, according to U.S. Space Force Vice Commander Lt. Gen. David Thompson, who added the report could be sent to Congress in the near future."

FederalTimes – Court decides Pentagon can reevaluate parts of JEDI procurement

  • "A federal judge will allow the Department of Defense to reconsider certain aspects of its enterprise cloud procurement despite opposition from Amazon, according to a court decision filed April 17."


This week's Weekly Debrief covers several interesting topics, including network segmentation, coronavirus scams, public sector ransomware attacks, NFL cybersecurity, the Illinois biometric privacy law, and the global privacy landscape.


NetworkWorld – Why Network Segmentation Matters

  • ​"When IT leaders hear about segmentation, their first thought is usually about dividing a network up using VLANs or VXLANs. But segmentation also plays a critical security role in securing dynamic multi-cloud environments, IoT and BYOD strategies, and automated workflows in today’s highly distributed environments."

DarkReading – Why Consumers, SMBs Are Likely to Fall for Coronavirus Scams

  • "Consumers' and small-business owners' expectations and attitudes toward government communications could make them more susceptible to coronavirus-related cybercrime, new data shows. An overall lack of skepticism combined with a willingness to engage may increase their risk."

ThreatPost – Public Sector Ransomware Attacks Rage On: Can Your Organization Repel Them?

  • ​"To pay or not to pay? That is the question many public-sector organizations must grapple with when faced with a complex ransomware attack – even while the COVID-19 pandemic rages on around them."

TheHackerNews – Malicious USB Drives Infect 35,000 Computers With Crypto-Mining Botnet

  • ​"Cybersecurity researchers from ESET on Thursday said they took down a portion of a malware botnet comprising at least 35,000 compromised Windows systems that attackers were secretly using to mine Monero cryptocurrency."

ThreatPost – NFL Tackles Cybersecurity Concerns Ahead of 2020 Draft Day

  • ​"The NFL draft is slated to start Thursday, and thanks to the COVID-19 pandemic, it will be the first virtual version of the event ever presented. This raises a few cybersecurity concerns, according to researchers and the teams themselves — but the NFL is planning on knocking the security ball straight through the uprights."


Law.com – New State Laws Set National Standards for Privacy and Data Security

  • ​"A survey of U.S. corporate leaders released only a few months ago found those CEO’s ranking cyber threats and the potential over-regulation of data privacy among the greatest challenges to the growth of their organizations."

Bloomberg – INSIGHT: Illinois Biometric Privacy Law Has Nationwide Potential in Pandemic

  • ​"In response to the global Covid-19 pandemic, employers and schools have turned to remote work and e-learning solutions, including meetings and classes held via Zoom, Google Hangouts, and Google’s “G Suite for Education,” among other applications."

CPO Mag – Where Does the U.S. Rank in the Global Data Privacy Landscape?

  • ​"Data privacy is a human right. Consumers demanded their governments take action in protecting their privacy and finally, governments started listening. Europe was the first and jump-started this global trend of keeping data safe and regulated. They began by enforcing the General Data Protection Regulation (GDPR) in May 2018, which significantly increased the protection of people’s online data rights."

#govconjudicata #cyberjudicata #weeklydebrief

Recent Posts

See All

Weekly Debrief (6/21–25)

This week's Weekly Debrief covers the CMMC, defense contractor vulnerabilities and supply chain logistics, FAA legislation, possible IRS spending boost, and a GMU study regarding financial dynamics of

Weekly Debrief (6/14–18)

This week's Weekly Debrief covers the Juneteenth federal holiday, federal data strategy, GSA STARS III awards, Army modernization, and "BRAC for VA." White House GovExec – Most Federal Employees Will

Weekly Debrief (6/7–11)

This week's Weekly Debrief covers the Biden administration's spending plans, Defense software issues, CMMC costs, joint DoD/VA medical center, Space Force digital workforce, and DoD wants funding for