cyber security Archives

May 9, 2023

Trends from the 2023 RSA Security Conference

By Dr. Robert Buccigrossi, TCG CTO The RSA 2023 Conference was a gala affair of security companies demonstrating their cutting-edge services. I saw four key trends to which Federal agencies should pay attention, if they aren’t already. XDR: eXtended Detection and Response —…

February 27, 2023

Zero Trust, NIST Recommendations, and Cloud Freedom

by Robert Buccigrossi The Cybersecurity and Infrastructure Security Agency and National Security Agency released an advisory that warned of a “widespread cyber campaign involving the malicious use of legitimate remote monitoring and management (RMM) software.” Targeting RMM software (through cracking…

August 25, 2021

Cybersecurity Executive Order will Topple our Industry’s House of Cards

by Dr. Robert Buccigrossi, TCG CTO On May 12, 2021, the Biden Administration released the Executive Order on Improving the Nation’s Cybersecurity. This directive seeks “bold changes and significant investments” to “protect and secure” the Federal Government’s computer systems by: Section…

December 23, 2020

The SolarWinds Hack and Zero Trust Architecture

By Dr. Robert Buccigrossi, TCG CTO SolarWinds Orion is a popular software system that allows an administrator to monitor your network performance across the company through a central interface. Of course, SolarWinds provides periodic patch updates to Orion. Unfortunately this past March, hackers,…

December 18, 2020

Best Practices for ICAM Shared Service Providers

Way back in 1993—a lot of time in internet years—a New Yorker cartoonist created what became one of the most oft-cited memes about cybersecurity. A dog sits at a desktop computer saying to a fellow canine, “On the internet, no one knows you’re…

March 10, 2020

Faster OpenVAS Vulnerability Scanning

By Robert Buccigrossi, TCG CTO OpenVAS is a system vulnerability scanner that checks visible ports, services it can access for known exploits, and high level web threats (like cross-site script vulnerabilities and improper file access). The TCG Tech Team uses it to…

May 6, 2019

ISO 27001 Certification Proves Security is Priority at TCG

WASHINGTON, DC — It’s safe to say that TCG is happy to be ISO 27001 certified. The certification is evidence that TCG meets the highest standard for information security management and makes continuous improvements in our internal controls. ISO 27001 sets requirements…

August 27, 2021

Data Visualization Tool Helps Team Achieve DevSecOps

The DevSecOps approach is intended to ensure that security is built into the entire lifecycle of an application and that the responsibility for security is shared among different teams. Currently though, most government agencies split responsibility for IT between application,…

Tag: cyber security