Author name: Hasan Brohi

The evolving cyber threat landscape requires the federal government to embrace more comprehensive and adaptive cybersecurity measures. The National Institute of Standards and Technology (NIST) recently released an updated version of its Cybersecurity Framework — NIST Cybersecurity Framework 2.0 — which reflects the latest in cybersecurity thinking, especially in identity management and resilience. As a […]

As someone who has spent years working with Identity and Access Management (IAM) in federal environments, I’m excited to see the updated NIST Special Publication 800-63-4. The new guidance dives into digital identity management in a way that’s tailored for today’s increasingly complex and high-risk environments. Focusing on the first pillar — Identity — this

Alright, let’s talk about the Office of Management and Budget’s new directive, OMB M-24-14. If you’re in the world of cybersecurity, this memo is like a jolt of caffeine for federal Zero Trust adoption—especially when it comes to Pillar 1: Identity. With M-24-14, OMB isn’t just suggesting we think about security a bit more; they’re

Executive Order 14028 is a bold step forward in federal cybersecurity. It’s like a call to arms for everyone involved in protecting government systems, from the top down. For those of us in the field, it’s exciting because it brings both urgency and direction to cybersecurity for federal agencies. The core goal? To make sure

In an era where cyber threats escalate in sophistication and volume, traditional cybersecurity defenses are no longer enough to protect federal systems. The federal government, overseeing sensitive information and critical infrastructure, faces unique cybersecurity challenges. From hostile nation-state actors to advanced cybercriminals, the threats are relentless. Thus, a more robust and resilient approach to cybersecurity

Generative AI is transforming the digital landscape, offering remarkable capabilities to automate processes, generate content, and assist with complex problem-solving. However, as a cybersecurity professional, I see generative AI as a double-edged sword—one that presents tremendous potential for enhancing cybersecurity defenses, but also significant risks that could make the threat landscape more complex and challenging.