AUTHOR ARCHIVES

Joseph Marks

Senior Correspondent Joseph Marks covers cybersecurity for Nextgov. He previously covered cybersecurity for Politico, intellectual property for Bloomberg BNA and federal litigation for Law360. He covered government technology for Nextgov during an earlier stint at the publication and began his career at Midwestern newspapers covering everything under the sun. He holds a bachelor’s degree in English from the University of Wisconsin in Madison and a master’s in international affairs from Georgetown University.
Results 41-50 of 1377

The Next President Will Face a Cyber Crisis. Here's How to Handle It

November 7, 2016 FROM NEXTGOV arrow The next U.S. president will face a cyber landscape of unparalleled complexity with little time or flexibility to bring it under control. Begin with a federal government proved unable to defend itself against breaches at the White House, State Department, Joint Chiefs of Staff and the Office of Personnel Management....

Governors Defend Election Infrastructure Amid Hacking Fears

November 4, 2016 FROM NEXTGOV arrow The nation’s governors are confident Tuesday’s election won’t be thwarted by cyberattacks, according to a statement today from top leaders of the National Governors Association. The statement stressed both the intense cyber testing of voting systems and the decentralized nature of U.S. voting systems, which would make it extremely difficult...

How Many Zero-Days Does the US Government Hold? Here’s the Best Guess Yet

November 4, 2016 The U.S. government likely retains an arsenal of just dozens of otherwise unknown computer vulnerabilities that can be used for spying or sabotage and adds fewer than 10 new vulnerabilities to that cache each year, according to a Columbia University analysis released today. The analysis gives some context to the...

Report: Government’s Zero Days Arsenal is in the Dozens

November 3, 2016 FROM NEXTGOV arrow The U.S. government likely retains an arsenal of just dozens of otherwise unknown computer vulnerabilities that can be used for spying or sabotage and adds fewer than 10 new vulnerabilities to that cache each year, according to a Columbia University analysis released today. The analysis gives some context to the...

Government’s Auditor Passes Own IT Audit

November 2, 2016 FROM NEXTGOV arrow The government auditor that has savaged the Internal Revenue Service, the Food and Drug Administration and other agencies for poor information security practices passed its own review with flying colors today. The review by the Government Accountability Office’s inspector general focused on GAO’s procedures to wipe sensitive data off defunct...

Cyber Workforce: A Compound Noun Meaning the Folks Protecting Your Networks

November 2, 2016 FROM NEXTGOV arrow A Commerce Department office focused on cybersecurity education released an updated guidance document today aimed at getting government and industry speaking a common language when it comes to the cybersecurity workforce. The Cybersecurity Workforce Framework divides cybersecurity work into seven broad categories that include over 50 work roles with tasks,...

GAO Plans OPM, FedRAMP Audits in 2017

November 1, 2016 FROM NEXTGOV arrow A top question for government cyber auditors next year will be whether the Office of Personnel Management has shored up the information security weaknesses that led to a massive breach of personnel information in 2015. A report examining OPM’s efforts to mitigate, detect and combat cyber intrusions is likely to...

Task Force Urges Loosening Reins on Hacking Victims to Fight Back

October 31, 2016 FROM NEXTGOV arrow The U.S. government should clarify the ways private companies can respond to cyber breaches, including sometimes allowing them to compromise attackers’ networks, according to a report from academics and private sector officials published today. Such “active defense” measures begin with sharing information about adversaries, luring those adversaries with misinformation and...

New Rule Takes Handcuffs Off Ethical Hackers

October 28, 2016 FROM NEXTGOV arrow A new rule takes taking effect today expanding protections for white hat hackers—security researchers who disclose the software vulnerabilities they uncover to manufacturers or to the public rather than exploiting them. Advocates say the change will lead to more ethical hackers finding dangerous flaws in the software underlying cars, medical...

Obama to Successor: Put Fed IT Under One Roof, For Its Own Protection

October 28, 2016 Obama administration cyber officials plan to urge the next president’s team to drastically centralize information technology services to reduce the risk of another massive data breach, a White House official said today. Those officials are preparing an “options paper” for the next president’s transition team that envisions consolidating IT services...

Thank you for subscribing to newsletters from GovExec.com.
We think these reports might interest you:

  • Sponsored by G Suite

    Cross-Agency Teamwork, Anytime and Anywhere

    Dan McCrae, director of IT service delivery division, National Oceanic and Atmospheric Administration (NOAA)

    Download
  • Data-Centric Security vs. Database-Level Security

    Database-level encryption had its origins in the 1990s and early 2000s in response to very basic risks which largely revolved around the theft of servers, backup tapes and other physical-layer assets. As noted in Verizon’s 2014, Data Breach Investigations Report (DBIR)1, threats today are far more advanced and dangerous.

    Download
  • Federal IT Applications: Assessing Government's Core Drivers

    In order to better understand the current state of external and internal-facing agency workplace applications, Government Business Council (GBC) and Riverbed undertook an in-depth research study of federal employees. Overall, survey findings indicate that federal IT applications still face a gamut of challenges with regard to quality, reliability, and performance management.

    Download
  • PIV- I And Multifactor Authentication: The Best Defense for Federal Government Contractors

    This white paper explores NIST SP 800-171 and why compliance is critical to federal government contractors, especially those that work with the Department of Defense, as well as how leveraging PIV-I credentialing with multifactor authentication can be used as a defense against cyberattacks

    Download
  • Toward A More Innovative Government

    This research study aims to understand how state and local leaders regard their agency’s innovation efforts and what they are doing to overcome the challenges they face in successfully implementing these efforts.

    Download
  • From Volume to Value: UK’s NHS Digital Provides U.S. Healthcare Agencies A Roadmap For Value-Based Payment Models

    The U.S. healthcare industry is rapidly moving away from traditional fee-for-service models and towards value-based purchasing that reimburses physicians for quality of care in place of frequency of care.

    Download
  • GBC Flash Poll: Is Your Agency Safe?

    Federal leaders weigh in on the state of information security

    Download

When you download a report, your information may be shared with the underwriters of that document.