Many remote workers use VPNs to gain secure access to government applications and data. Unfortunately, if a significant amount of traffic hits the VPN at once, it can cause performance problems that hinder productivity and add opportunities for cyberattacks. Check out this video to see how agencies can solve both issues by providing a simple andRead… Read more »
Digital collaboration is a good thing, right? Of course, it is. But it’s also a potential cybersecurity risk. The problem is that zero trust and other approaches to cybersecurity don’t account for the data shared in digital workspaces. This free, four-minute video explains how to protect that data without crimping collaboration. Watch, Keeping Data SecureRead… Read more »
In this video, we will step you through this journey to zero trust, from establishing some guiding principles to cultivating a zero trust culture. Watch, Why Zero Trust? Why Now?, now: Brought to you by:
There’s no getting around it: Malicious cyber actors see state and local agencies as prime targets – both because they manage so much sensitive information and because they often and because they generally don’t have enough cyber resources. But don’t give up hope! In this video, we will review six tactics that can help yourRead… Read more »
No one likes to think about it, but every time an employee uses a mobile device to access an agency’s network, they might be opening a back door to a malicious actor. And you better believe that malicious actors know it. But take a deep breath and watch this video to learn how agencies canRead… Read more »
Today’s network operations no longer follow the old rules where everything that was enclosed within the network boundaries was assumed to be trustworthy and only external connections were suspect. This video will provide agencies with a framework that they can use to help them develop a comprehensive zero trust approach. Start the video: Brought toRead… Read more »
This four-minute video explains how to avoid falling victim to one of the most dangerous and insidious threats: email phishing attempts.
This video, developed in collaboration with Lookout, will explain the importance of Zero Trust for mobile devices. Watch now for free: Brought to you by:
Learn how right data analytics solution can reduce volume and noise, giving threat hunters and analysts the upper hand.
This video explores how you can create a playbook for hybrid cloud security, and highlights five best practices for building on that playbook.
Learn how to manage identities across your systems and applications for enhanced security.
Have you overlooked one of your agency’s biggest vulnerabilities – mobile app security?
Learn how unexpected events can be turned into building blocks for innovation and resilience.
This free six-minute video explains how public clouds enable a shared responsibility model where vendors assume many of agencies’ compliance and security responsibilities.
We created this video to help you get smart quick about containerization and its ramifications for security.
In this video, we’ll cover how integration seals up gaps in cyberdefense by bringing data from disparate solutions together.
This quick video will explore how you can improve your agency’s cybersecurity by leveraging existing resources.
In this free six-minute course, you’ll learn about common forms of cyberattack and how to stop them from spreading around the enterprise.
This free, seven-minute video will discuss how cyber recovery works and explain its key requirements.
In this course, you will learn how an emerging industry standard called runtime application self-protection, or RASP, can provide the insight you need.
Hit play, and in just under seven minutes learn how to better secure your cloud-native environment.
In this course, you’ll learn what agencies can do with the new TIC and how its network connections work.
DevOps is rapidly changing how agencies develop, test and deliver applications. It’s widely understood that security must be part of the development. But what’s often overlooked is that the development environment itself also must be secure. This course explains how agencies can leverage the Common Access Card/Personal Identification Verification card to create a multi-factor authentication-based… Read more »
Learn how your public sector agency can reduce the time and effort needed to incorporate security into the development process.
In this course, you’ll learn how productivity and security go hand in hand in the remote environment.
In this free, six-minute course, we will discuss how to improve the performance, manageability and security of the PC.
This 10-minute online course contains three self-paced lessons: Lesson 1: The Risk of Ransomware [2:22] Lesson 2: Federal Fears About Ransomware [2:04] Lesson 3: Repelling and Recovering From Ransomware [3:27] If you haven’t heard of ransomware yet, you will. Ransomware is more than just malicious software – it’s a dangerous cyberthreat that can cost yourRead… Read more »
This course will look at the concept of Customer IAM (CIAM) and how it can be used to improve not only the security and privacy of citizen services. It will also explain how CIAM can improve the citizen experience, providing users with a more seamless transition from one channel to another.
Learn about the network security challenges that agencies face, and how a software-defined approach to networking is helping to address those issues.
Gain insights into the CDM Dashboard Ecosystem, which is designed to provide agencies with actionable intelligence on cyberthreats.
Learn how to build a foundation for enterprise risk management (ERM).
Learn how to combine open source and DevSecOps to improve your agency’s security.
In this course, you’ll learn about the current setting of network security, the roles that modern technologies play and how to bring in an ecosystem exchange.
Identity fraud can be particularly difficult to manage. A consumer’s physical or digital identity can be used for employment fraud, benefits fraud, tax return fraud, and more. Along with the negative effects that fraud can have on the immediate victim, taxpayer dollars go to waste and government programs see diminished results. Unfortunately, there is aRead… Read more »
Insider threats have tried to infiltrate agencies for years, and because of their familiarity with software and systems, they can be difficult to stop.
Without the proper security measures in place, agencies can’t effectively prevent or handle the more intense and frequent cyberattacks that come their way.
The rapid rise in government applications has created significant benefits to the public sector. But while software applications are transforming the face of government, they are also expanding government’s technology footprint and, with it, the potential attack surface. To ensure every application at your agency is secure, you must engrain security throughout the software developmentRead… Read more »
Cloud computing can offer innumerable benefits to government agencies, but ensuring they are securely implemented and maintained is challenging. However, the cloud offers something that can eliminate many these complexities: automation. Automating the deployment, configuration and monitoring of security can deliver predictable, repeatable, and reliable compliance and security. This course explores how compliance automation canRead… Read more »
This course examines what comprises CDM Phase 4 and explains how your agency can become prepared to protect its most critical data by walking through three critical steps. Once agencies have walked through these three steps – discovered, categorized and applied governance to their data – they will have achieved the ultimate goal of CDM… Read more »
In this course, we examine what an Integrated Cyber Defense Platform protects, how it achieves security goals and how agencies can use it to achieve better outcomes.
In three lessons, this course examines the role of a third-party assessment organization (3PAOs) as an advisor to help agencies and cloud service providers work together to build and document FedRAMP-compliant environments.
Governments at all levels are increasingly taking a proactive, departmentwide approach to cybersecurity. In four lessons, we highlight those key advancements, as well as specific examples from federal state and local agencies that are putting these approaches into practice.
This course explains how a security fabric, rather one-off platforms or tools, can increase cybersecurity even as agencies innovate. In three lessons, we explain the risks of digital transformation and discuss the components of a more robust security transformation. Finally, we define a security fabric and examine how it can transform agency operations and innovation.
In three lessons, this course examines the problem of insider threats in government. It explains how to align your insider threat analysis with your Federal Enterprise Architecture and explores a better, multilayered defense for agencies. In our last lesson, we offer examples of a multilayered approach in action.
Today, government agencies have to secure physical, network, and cyber systems. This course will show you how.
Welcome to the GovLoop Academy course on Continuous Diagnostics and Mitigation, a Department of Homeland Security program that provides government agencies automated cybersecurity capabilities to defend against today’s advanced threats. According to DHS, the CDM program helps to “identify cybersecurity risks on an ongoing basis, prioritize these risks based upon potential impacts, and enable cybersecurityRead… Read more »
Welcome to the GovLoop Academy course on Distributed Denial of Service (DDoS) attacks, where you will learn about what they are and how your agency can prevent and respond to them. By taking this course, you will be enrolled in five lessons about DDoS attacks and how to prevent them. We will explore what DDoSRead… Read more »
The Identity Ecosystem steering group, which seeks to provide a marketplace with multiple identity providers that issue trusted credentials, has 1100 individuals and 450 companies and federal agencies participating. They chose five organizations to pilot identity solutions. Below are the agencies and what they are doing to reduce cyber crime and identity theft.