MENLO PARK, CALIFORNIA —Technology start-ups will learn about a new opportunity to collaborate with the Department of Homeland Security (DHS) on combating counterfeit and forged documentation. The DHS Science and Technology Directorate (S&T) Silicon Valley Innovation Program (SVIP) will host a DHS Industry Day on December 11th in Menlo Park, California, to describe its operations and new solicitation: Preventing Forgery and Counterfeiting of Certificates and Licenses.

This new solicitation seeks proposals from startups on the use of blockchain and distributed ledger technology to prevent the falsification of records and provides startups with the opportunity to receive up to $800,000 in non-dilutive funding.

Tuesday, December 11, 2018

1:00 p.m.-3:00 p.m. PDT DHS S&T will host an Industry Day to discuss operational needs and partnership opportunities in the area of blockchain
verification of certificates and licenses.

SRI International
333 Ravenswood Avenue
Menlo Park, California 94025

To register for the Industry Day, visit https://www.regonline.com/DHS-SVIP-Dec2018. For more information about current and future opportunities to collaborate with S&T SVIP, visit our website or contact dhs-silicon-valley@hq.dhs.gov.

S&T SVIP targets nontraditional performers who can offer solutions to the most pressing threats facing DHS and the homeland security mission. SVIP builds relationships with startups and small businesses around the world to seek innovative solutions for the needs of DHS operators and end-users. With its broad mission and expansive global operations, DHS offers a prime partnership opportunity to fund, test, pilot and apply cutting-edge technological solutions. Participation in S&T SVIP does not mandate or promise procurement contracts with DHS or its components.

###

Credentialed media are welcome to attend the Homeland Security Industry Day, but must register at https://www.regonline.com/DHS-SVIP-Dec2018.

Topics: Cybersecurity, Science and Technology
Keywords: blockchain, R&D, Science and Technology, SVIP

# # #

]]> https://gt.gtscoalition.com/gtsc-submits-comments-on-gsa-dod-cybersecurity-resilience/ Mon, 28 Apr 2014 22:14:04 +0000 https://www.gtscoalition.com/?p=5671 GTSC working in collaboration with Brian Finch, of Strategic Partner Dickstein Shapiro and GTSC members Robert V. Jones, CEO of PReSafe Technologies, Larry Grant, CEO, EnProVera and Gary Daemer and Mark Dale, InfusionPoints submitted comments to the Joint Working Group on Improving Cybersecurity and Resilience Through Acquisition.  GTSC’s comments focused on clear and achievable cyber requirements that will not provide a competitive disadvantage for small and mid-sized companies.  Additionally, GTSC highlighted that an “LPTA” environment is not conducive to robust cybersecurity and that procurements that seek best value are more appropriate.  Please email us if you’d like a copy of our comments.

The survey collects data on the type and frequency of computer security incidents in which a computer was used as the means of committing a crime against the company or as a conduit through which other intrusion and/or criminal activity was perpetrated. It also collects data about the type and size of the company, cyber security practices, and computer infrastructure.

The results will provide the basis for enhancing or initiating efforts to strengthen the information sharing and awareness to inform our public private partnerships and create meaningful programming and tools to combat the cyber threat. 

Initial results will be reviewed at our Cyber Security Awareness Month program on October 23 with Dr. Phyllis Schneck, the new Deputy Under Secretary of Cyber Security at DHS. The full results will be released this fall. The questions have been developed by GTSC from a previously issued DOJ survey, in combination with input from FBI-WFO’s Cyber Branch and the INCRMA’s Cyber Special Interest Group. Please feel free to share the link with others who you believe would be appropriate respondents.

For individuals the theft or misuse of private information occurs daily.  Signals stolen while using public internet, misplaced cell phones, fishing attacks on home computers, and theft of personal computers happen throughout our society and result in long-term financial crisis.

Small Business owners face even greater obstacles from cyber attacks.  A recent National Small Business Association reported 44% of their 800 surveyed members had fallen victim to a digital break-in.  What are the steps we can take to help thwart these information criminals?  Solutions for both companies and individual citizens are very similar.

All business firms using the internet must have a strong risk management plan established and adhere to the rules in order to lessen the impact of cyber theft.  With the growth of cloud computing, use of smart phones and tablets, employees telecommuting, and digital information flowing outside the office, cyber attackers have many more access points.  The Federal Communication Commission (FCC) lays out guidelines to prevent cyber attacks.  Among their suggestions are:

• Train employees in security principles.  Use strong passwords with expiration dates.
• Protect information, computers and networks from cyber attacks.  Install fire wall security, the latest security software and web browsers.
• Create a mobile device action plan.  Password protect devices, encrypt data, and install security apps and how to report lost or stolen equipment.
• Make copies of all important data.  Store offsite or in the cloud.
• Passwords and authentication.  Require unique passwords and change every three months.

Many businesses have the additional exposure of outsourcing data.  Many businesses share customer information with third parties who provide billing, payroll, and employee benefits.  Additionally, web hosting, HR services, and information technology services are frequently outsourced.  Despite this outsourcing exposure many businesses do not require third parties to cover costs associated with data breach in their contacts.  When using outside partners, what is the risk-management strategy they use to protect you against financial loss and reputation harm?

Because of the explosion in internet usage many companies are seeking contractual risk transfer and indemnification through insurance.  Starting in the early 1990’s insurance has changed to provide protection for cyber growth.  Today numerous insurance companies either provide stand-alone policies or add the protection with other coverages, such as Directors & Officers policies (D&O), Errors & Omission Policies (E&O), and Fiduciary Liability policies. An E&O policy is a type of professional liability typically issued to companies setting standards for them selves or other clients.  D&O liability coverage is designed to protect companies against their management decisions and covers directors, officers, staff and the organization itself.

Cyber Liability Policies should provide protection for both First Party and Third Party Claims.

First Party coverage includes:

• Network and Information Security Liability
• Communication and Media Liability
• Regulatory Defense Exposure

Third Party coverage includes:

• Crisis Management Event Exposures
• Security Breach Remediation and Notification Expenses
• Computer Program and Electronic Data Restoration Expenses
• Computer Fraud
• Funds Transfer Fraud
• E-Commerce Extortion
• Business Interruption and Additional Expenses

Cyber Insurance helps before the loss occurs by going through a thorough underwriting process to help highlight the potential risk exposures to be addressed.  Nevertheless, should the loss occur these policies help in determining the data leak, PR crisis, IT crisis, and the financial crisis.

The recommendation to combat today’s cyber threat involves risk management planning, assistance from third party partners, and insurance coverage to assist should a loss occur. For more cyber security tips, visit www.US-CERT.com. Learn about the FCC’s Small Business Cyber Planner here.

Mary Jordan, “CYBERSECURITY – A Special Report,” The Washington Post, Thursday, October 10, 2013

P. Allen Haney, President, P. Allen Haney Company

Mr. P. Allen Haney is a Strategic Advisor to the Government Technology & Services Coalition. He is also a trusted advisor to business owners and nonprofit executives, Allen Haney is best known for solving problems. His consul on employee benefits, executive compensation, and retirement planning routinely vitalizes the health and sustainability of closely held businesses and associations.

He is most appreciated for his all-inclusive, uncompromising commitment to expand client capacity by uncovering risks and opportunities hidden in blind spots. Read more about Mr. Haney here.

I’m a Spear Phisherman. I want to catch the big one and reel it in! But I’m not talking about tuna; I’m talking about landing your personal information. Here’s my secret: I impersonate your friends, your bank and the people you trust to gain access to your computer and your network.

I’m pretty good. I know that you can’t always tell the difference from the real messages and the fake ones that I dangle in front of you. It doesn’t take long for me to gather lots of personal information about you — what you like, who you follow, what you purchase online and which websites you visit.

I use the information I find through open sources and develop personalized messages designed to trick you into believing they are from trusted entities. Spear phishermen like me can design emails, tweets, phone texts and even Facebook updates that access your private information after just one click.

Once you open the message, I trick you into giving me your user names, passwords or other office information, which allow me to access your network undetected. Little did you know that you just gave me the ability to take all the company information I would like.

It’s easy to avoid my targeted attacks and protect yourself against “Spear Phishing:”

• Be stingy with your user name and password. Don’t share personal information with anyone. At all!
• Don’t surf the Web chasing popular stories, blog posts, videos, etc. I love to hide in these sites, learn about your likes and dislikes and then target you.
• Think before you click links from social media sites, emails or text messages. That’s the easiest way for me to catch your information.
• Verify any caller before providing names and email addresses of your coworkers. Be the first line of defense.
• Delete suspicious emails without opening them or responding to them. If it looks suspicious and you don’t know the sender, it could just be bait. Use caution!

It’s easy to protect your information against my traps and keep your personal and company information safe.

Protect — don’t neglect — your information against Spear Phishermen like Mal Ware. For more information, check out www.us-cert.gov.

Lisa Martin
CEO
LeapFrog Solutions, Inc.

LeapFrog Solutions (LFS) is a certified woman owned small business based in Fairfax, Virginia. Founded in 1996, we are a trusted source for commercial businesses and federal agencies seeking full spectrum creative solutions and exceptional program management. This blogpost is brought to you by GTSC in partnership with LeapFrog Solutions. For more information on cyber awareness campaigns contact Anjali Dighe at 703.539.6127 or adighe@leapfrogit.com.