Source:Defense Scoop

To protect military contractors from adversary cyber attacks and intrusions, the Defense Department must commit to educating, measuring and driving improvements in the digital security and resiliency of the industrial base, according to new strategic guidance from the Pentagon.

The Defense Industrial Base Cybersecurity Strategy, released Thursday, is intended to steer the department and industry’s response to threats. Signed by Deputy Secretary Kathleen Hicks, it aims to strengthen companies doing business with the Pentagon — including small businesses and subcontractors — against adversaries seeking access to sensitive data, proprietary information and intellectual property of weapon systems and production nodes.

As part of that effort, the Pentagon will work with the defense industrial base (DIB) to enhance their network posture while also providing more cohesive strategic guidance for companies, according to David McKeown, deputy chief information officer for cybersecurity.

“Over the last several years the DIB has made great strides in improving cyber resiliency, security, compliance and understanding the threat landscape,” McKeown told reporters Thursday ahead of the document’s release. “Together through the DIB cybersecurity strategy, we will further advance our goals and improve DIB cybersecurity.”

The document outlines four main goals as well as corresponding objectives that cover activities from fiscal 2024 to 2027. It notes that while many of the efforts listed have either already begun or are part of the Pentagon’s broader approach to industrial base cybersecurity, the strategy will “sharpen the focus, collaboration and integration” of those objectives.

Click HERE to read the rest of the article.

Source:EXIGER

Managing foreign ownership, control, or influence (FOCI) risk is a critical concern for U.S. companies. This risk extends far beyond a national security issue; it encompasses protecting classified information, intellectual property, ensuring supply chain resilience, and the overall performance and schedule of contracts.

FOCI risk arises when a foreign interest, direct or indirect, can influence and make decisions affecting a company’s management and operations. Such influence, if not properly managed, can lead to unauthorized access to classified information or negatively impact performance and contracts. Given these dynamics, the importance of FOCI risk management cannot be overstated:

Asset protection: Safeguarding intellectual property, trade secrets and classified information is essential, especially in the face of a 1300% increase in China-linked espionage cases.

Regulatory compliance: Adhering to FOCI risk regulations is vital, as 1 in 5 corporations claim China has stolen their IP in the past year.

Business continuity: Ensuring uninterrupted operations is critical to counteract economic coercion and safeguard corporate interests.

National security: Proactively managing FOCI risk is an integral part of preserving national security, considering the gravity of the threat.

Let’s delve into the risks associated with FOCI and why businesses need to prioritize FOCI risk management.

Click HERE to read the rest of the article.

Source: FNN

The Biden administration, as part of a broader data privacy effort, is attempting to curtail foreign adversaries from gathering sensitive data on federal employees and military service members.

The new initiative comes under an executive order President Joe Biden was expected to sign Wednesday. The EO is aimed at protecting Americans’ sensitive data from being accessed by so-called “countries of concern” through data brokerages and other transactions.

Under the EO, the Justice Department will issue regulations around the bulk sale of sensitive data to unfriendly foreign nations, including China, Russia, Iran, North Korea, Cuba, and Venezuela. The EO will specifically highlight geolocation data, personal health data, personal financial data, and biometrics, among other categories.

Click HERE to read the rest of the article.