Local officials striving to secure water and other public works from cyber attacks need funding help to upgrade antiquated technology, but they also need a standardized approach to accessing cybersecurity best practices and educational tools, according to American Public Works Association CEO Scott Grayson.
Officials from CISA, DOJ and TSA testify in a week filled with cyber-focused hearings on a wide range of issues including electric grid security and ransomware, while the House Armed Services starts work on its version of the annual defense policy bill.
Two groups of lawmakers in the House are working on cyber incident reporting legislation for critical infrastructure operators, with separate bills likely to emerge soon from the Homeland Security Committee and from leaders of the bipartisan Cyberspace Solarium Commission.
The Cybersecurity Maturity Model Certification Accreditation Body has started a new round of training for provisional assessors under the Pentagon’s cyber certification program, and is planning to nearly double the number of individuals available to conduct assessments for contractors over the next four months.
The bipartisan leadership of the Senate Homeland Security and Intelligence panels has introduced an industrial control system security bill that matches legislation passed this week in the House to address one of the top vulnerabilities identified by the Cybersecurity and Infrastructure Security Agency.
The Energy Department has released an update to its Cybersecurity Capability Maturity Model (C2M2), a tool designed to help organizations “evaluate and make improvements to their cybersecurity programs.”