Holding Government Contractors Responsible for Cybersecurity Is Trickier Than It Sounds

From Nextgov.com

The federal government wants to hold defense contractors accountable for the cybersecurity of their supply chains but that’s no easy feat, experts said Tuesday.

Industry representatives told lawmakers on the Senate Armed Services Committee about attempting to tackle cyber threats as a federal contractor. Much of the hearing was focused on one specific issue: increasingly complex levels of supply chains make it difficult for prime contractor to ensure all subcontractors are upholding cybersecurity protections. And that ever-lengthening chain increases the possibility of compromised information or cyberattacks. [Read complete article]

Cybersecurity – Skills Shortage

The International Information Systems Security Certification Consortium (ISC2) conducts an annual study to assess the cybersecurity workforce gap, better understand the barriers facing the cybersecurity professional, and uncover solutions that position these talented individuals to excel in their profession, better secure their organizations’ critical assets and achieve their career goals.

ISC2 recently published results from the 2018 Cybersecurity Workforce Study that raises concerns with the growing shortage of cybersecurity skills and that as the gap between supply and demand continues, it puts organizations at risk. [Read the full report]