More than two years after historic breach, OPM continues to struggle with cybersecurity

The Office of Personnel Management continues to struggle with cybersecurity more than two years after the agency first publicly acknowledged they were breached due to poor security practices, according to a newly released Office of the Inspector General report. The report, which focuses on the state of systems during fiscal year 2017, concludes that while OPM has “made improvements in its Security Assessment and Authorization (Authorization) program,” inspectors were nonetheless able to find a “significant deficiency in OPM’s information security management structure.” This translated to a poor overall cybersecurity score, as defined by the National Institute of Standards and Technology, of two out of five for OPM. The score from the OIG is supposed to define the “maturity” level of an organization in relation to the security of information systems. This lackluster rating is due in large part to inaction by the agency regarding prior security recommendations referenced in other audits. “OPM is not […]

The post More than two years after historic breach, OPM continues to struggle with cybersecurity appeared first on Cyberscoop.

Continue reading More than two years after historic breach, OPM continues to struggle with cybersecurity

Prepare for the EU’s General Data Protection Regulations with these tools

Last week during Microsoft Inspire, the Redmond company talked about the upcoming GDPR and how they are already prepared to be in compliance with the new data rules for the European Union that go into effect next May across their Azure services. Now … Continue reading Prepare for the EU’s General Data Protection Regulations with these tools

Prepare for the EU’s General Data Protection Regulations with these tools

Last week during Microsoft Inspire, the Redmond company talked about the upcoming GDPR and how they are already prepared to be in compliance with the new data rules for the European Union that go into effect next May across their Azure services. Now … Continue reading Prepare for the EU’s General Data Protection Regulations with these tools