US Congress to undergo cybersecurity overhaul

By

Training and malware scans on the agenda.

For the first time, the U.S. House of Representatives will require its staff and members to take part in an annual IT security training program -- one of the mandates under new policy set to take effect next year.


Congressional leaders this week accepted five new cybersecurity policy recommendations aimed at protecting sensitive information belonging to the House of Representatives and securing its IT systems from attack.

The proposed changes were crafted by Daniel Beard, the House's chief administrative officer, who was asked by Speaker Nancy Pelosi and Minority Leader John Boehner to conduct an assessment of the lower chamber's information security policies.

The new guidelines, set to take effect next year, require all House staff and members to undergo an annual cybersecurity training program, according to a letter from Beard to his House colleagues. Employees who travel out of the country will be required to have their wireless devices and laptops screened for malware prior to departing and upon returning.

In addition, the rules dictate that any sensitive information be encrypted when stored on mobile devices, and properly protected when being transmitted across a public network. Mobile devices, such as iPhones and BlackBerries, also must be password protected and locked when not in use.

The new policy also calls for the House to deploy additional firewall protocols.

Leaders called on Beard to oversee the review after a now-fired junior staffer for the House Standards Committee leaked confidential information on a peer-to-peer network, a spokesman for the Office of the Chief Administrative Officer told SCMagazineUS.com. The document that the staffer leaked contained information into the ethics probes of a number of Congressional members and their aides.

See original article on scmagazineus.com

Got a news tip for our journalists? Share it with us anonymously here.
Copyright © SC Magazine, US edition
Tags:
congresscybersecurityinternalpolicysecuritytrainingus

Sponsored Whitepapers

See everything. Do more.
See everything. Do more.
Lindentech Secures Digital Identity with Zero Trust and Microsoft Entra
Lindentech Secures Digital Identity with Zero Trust and Microsoft Entra
Diamond IT Delivers GRC Transformation with Microsoft Purview
Diamond IT Delivers GRC Transformation with Microsoft Purview
Linktech Powers Energy Trader’s Essential Eight Compliance in Just Eight Weeks
Linktech Powers Energy Trader’s Essential Eight Compliance in Just Eight Weeks
Byte Delivers Future-Ready IT: Transforming Endpoint Security and Productivity with a Cloud-First Strategy
Byte Delivers Future-Ready IT: Transforming Endpoint Security and Productivity with a Cloud-First Strategy

Events

Most Read Articles

India's alarm over Chinese spying rocks CCTV makers

India's alarm over Chinese spying rocks CCTV makers
Hackers abuse modified Salesforce app to steal data, extort companies

Hackers abuse modified Salesforce app to steal data, extort companies
Woolworths' CSO is Optus-bound

Woolworths' CSO is Optus-bound
Cyber companies hope to untangle weird hacker codenames

Cyber companies hope to untangle weird hacker codenames
techpartner.news logo
Dave Stevens on Brennan's evolution and the need for Aussie tech unity
Dave Stevens on Brennan's evolution and the need for Aussie tech unity
Sydney's ITKnocks on contact centre AI and the slow death of the IVR
Sydney's ITKnocks on contact centre AI and the slow death of the IVR
"It's an exciting time to be part of the health and aged care sector"
"It's an exciting time to be part of the health and aged care sector"
Insicon founder Matt Miller on the coming 'tsunami' of compliance and educating boards about cyber security
Insicon founder Matt Miller on the coming 'tsunami' of compliance and educating boards about cyber security
Orro claims Australia first with managed digital asset discovery service
Orro claims Australia first with managed digital asset discovery service

Log In

  |  Forgot your password?