When the Whitehouse issued its new action plan to prevent security breaches and attacks similar to that of the OPM fiasco, part of the plan was to acknowledge a number of cybersecurity gaps; some of which will ultimately impact security certifications such as FIPS 140-2, Common Criteria, and DoDIN APL:
Nov. 13, 2015
All agencies must identify and report to the Department of Homeland Security an inventory of their high-value assets — federal systems containing sensitive or critical data.
Dec. 31, 2015
The CIO Council established a subcommittee focused on ways to rapidly deploy emerging technology.
Jan. 31, 2016
OMB will release a new plan for implementing cybersecurity shared services. Areas include: identity services, mobile security, network segmentation and encryption.
April 30, 2016
GSA will finalize a contract vehicle for pre-vetted services for incident response services that can quickly be leveraged by agencies in the wake of a breach.
Schedule some time to talk our Solutions Team to better understand how each one of these might affect your security certification strategy.