News

FDA: Bake in medical device security, identify risks

Medical device manufacturers should consider cybersecurity risks as part of the design and development of their products and submit documentation to the Food and Drug Administration about the risks identified and controls in place to mitigate those risks, says a final recommendation from the agency.

Federal CIOs see position 'dramatically changing' in coming years

By 2020, the federal chief information officer's role will look very different from today, said federal CIOs speaking at an ACT-IAC event Sept. 30, emphasizing a greater focus on soft skills, not just technical know-how.

SEC audit reveals lapses in laptop inventory, possibly affecting more than 1,000 computers

An internal investigation found that the Securities and Exchange Commission must take more action to better track agency-issued laptop computers. The inspector general said that the Office of Information Technology's inventory failed to include current locations of machines from an operations center that closed last year.

GSA hypes APIs, social media as means to publishing content

Forget traditional websites. To get content out there, agencies need to use new tools, argues the General Services Administration in a DigitalGov blog post, to change how government publishes information -- away from desktop ".gov" websites where traffic is declining, and toward mobile applications, social media and search engines.

NTIA chief: US will resist attempts by nations to give control of Internet to governments

While there's been growing global acceptance for a multistakeholder model of Internet governance, the head of the National Telecommunications and Information Administration warned that some countries might still try to give that power to governments.

Some agencies report limited or no savings from data center consolidation

Federal agencies report more than $3.3 billion in total planned savings since the Federal Data Center Consolidation Initiative launched four years ago, but the program hasn't produced impressive savings for every agency. 

Military services' role in cloud acquisition to get a boost, DISA role gets a downgrade

A memo to be released next month will allow the military services to handle their own acquisition of cloud computing technology rather than requiring them to work through the Defense Information Systems Agency. 

Federal agencies still investing too much on legacy systems rather than cloud computing, GAO says

Seven federal agencies have collectively ramped up the number of cloud services and investments in such efforts since 2012, but congressional investigators said the agencies are still only investing a tiny fraction of their IT budgets on such initiatives

FAA gives nod for six movie companies to commercially operate drones

The Federal Aviation Administration is permitting six movie companies to use drones, marking a signficant step in allowing more such commercial operations in U.S. airspace.

IRS should better manage worker identification data, says watchdog

The Internal Revenue Service's voluntary classification settlement program, or VCSP, allows employers to classify workers as independent contractors instead of employees, but an internal audit takes issue with the accuracy of data collected as well as its management of the applications.

Energy Department poorly overseeing cloud computing initiatives, audit finds

The Energy Department is falling short in effectively and efficiently purchasing, implementing and managing its cloud computing technologies, an internal audit found.

IG exposes information security gaps at federal, state health insurance exchanges

A recent review of three health insurance exchanges identified a variety of information security vulnerabilities ranging from unauthorized database access to poor information storage practices.

FBI's 2-year-old, $550M electronic case management system frustrates users

More than half of FBI employees using the bureau's electronic records and case management system for day-to-day activities are dissatisfied with search functionality and say indexing is a productivity drain.

Paper highlights legal, ethical issues with open health data, makes policy recommendations

Government open data initiatives have made patient health information more readily available online through healthdata.gov and third-party sites that pull from public sources. But coherent legal and ethics policies are lagging data innovation, says a paper recently published in the Berkeley Technology Law Journal.

Regulatory agencies doing less regulating, more advising for cyber resilience and response

Federal regulatory agencies are taking on a greater advisory role in helping critical infrastructure and financial services companies apply the National Institute of Standards and Technology's cybersecurity framework and reduce their cyber risks, several experts recently said.

CFPB needs to further strengthen security, privacy of large-scale data collections, GAO says

While the Consumer Financial Protection Bureau has taken steps to protect its large-scale data collectsion, ranging from credit card accounts to payday loans, it still needs to implement several more processes and practices to enhance privacy and information security, congressional investigators said.

Most federal agencies say they're planning to better manage software licenses, GAO reports

Twenty-one federal agencies said they plan to fully address the more than 100 recommendations made in a previous congressional report on the need for better managing software licenses, the Government Accountability Office said.

Army: New geospatial tool gives sage advice on unknown terrain

A new geospatial tool is helping the Army gain better insight and intelligence on new terrains, enabling commanders to make more informed decisions for more effective and secure operations.

'Data deserts' could have negative social and economic impacts, warns paper

Data is increasingly seen as a valuable resource. But a new paper published by the Information Technology and Innovation Foundation warns that if high-quality data collection regularly excludes certain individuals or communities then their problems could be neglected.

Data localization movement won't improve privacy, says Internet governance panel

Data localization and "technological sovereignty" movements have gathered strength in Europe and South America since the National Security Agency's surveillance programs became public knowledge. But it's a knee-jerk reaction to require that data reside within a country's borders and it doesn't necessarily ensure security or privacy, said Internet governance experts at a Sept. 19 New America Foundation event.