Commentary

• Foundation for origin data through software attestations set

  Jason Weiss, the chief operating officer of TestifySec, explains why CISA’s repository of software data must be more than ‘compliance theater.’

  Commentary

  May 30, 2024
• FISMA: Why it’s no longer just a checkbox for federal enterprise cybersecurity compliance

  Water and wastewater facilities are easy targets for state-sponsored cyberattacks, presenting an unacceptable risk to the American public.

  Commentary

  May 29, 2024
• Three AppSec questions you must ask in consolidation

  In its most simple form, consolidation is the concept of taking many tools and boiling them down into one platform.

  Commentary

  May 28, 2024
• Financial disclosure is a deserving target for the government’s digital transformation

  Government agencies most at risk of ethics violations and conflicts of interest are usually reliant on paper-based processes

  Commentary

  May 24, 2024
• Modern CI/CD platforms provide SBOM peace of mind

  Gayatri Prakash, the vice president and general manager for Compliance at CloudBees, explains how to make SBOMs more valuable through better data collection.

  Commentary

  May 23, 2024
• We need an AI strategy for government

  Successful use of AI in government requires more than just a focus on compliance with controls.

  Commentary

  May 22, 2024
• The browser-shaped hole in ZTNA

  As webapps become a trusted part of the way organizations do business, the risk unevaluated websites pose to zero trust architectures is underestimated.

  Commentary

  May 21, 2024
• VA should admit failure of its new e-health record system

  The evidence is clear and irrefutable that this system does not meet the needs of veterans, the clinicians who care for them or the VA as a whole.

  Commentary

  May 20, 2024
• The benefits of ‘best value’ for small businesses in the federal market

  GSA’s best value legislative proposal will allow GSA to craft policies and procedures that more closely align with the commercial market.

  Contracting

  May 17, 2024
• Legislate feelings? If it helps CX, maybe it’s time

  Jay Huie, CIO for Coreonyx and former deputy assistant commissioner at GSA, explains why Congress may need to articulate on qualitative metrics for bills.

  Commentary

  May 15, 2024
• Cybersecurity challenges persist, but CISA is up to the task

  There are hundreds of thousands of discovered vulnerabilities in software, but only a small fraction of these vulnerabilities are actively exploited.

  Commentary

  May 14, 2024
• Biden’s executive order to protect Americans’ personal data: A step in the right direction, but other factors must still be addressed

  Every day, Americans’ data is legitimately sold and resold through data brokers.

  Commentary

  May 10, 2024
• Unlocking the door to government contracts: A lifeline for small businesses

  Government contracts can represent a gateway to sustainable growth for small businesses.

  Commentary

  May 08, 2024
• The time for government to feel has come

  Embracing the humanity of federal employees isn't about balancing robotic professionalism and joyful home lives.

  Commentary

  May 07, 2024