“CISA’s Cybersecurity Quality Services Management Office (QSMO) is piloting three capabilities for mobile device security. The initiative is aimed at improving the security of government-furnished devices like smartphones and tablets.
Vincent Sritapan, section chief for CISA’s cyber QSMO office, told Federal News Network about the pilots in an exclusive interview. He said mobile has always been ‘a part of our DNA’ with existing initiatives like the protective Domain Name System firewall and its covering of endpoint devices.
But the latest offerings include a protective DNS capability specific to mobile traffic, as well as shared services for both mobile application vetting and device security…”
“The mobile application vetting, or MAV, service aims to assess the security of government-developed mobile applications.
‘There’s always been those concerns of, what are the standards that people are following? Are they securing their mobile apps?’ Sritapan said. ‘There’s a huge dependency there, but in truth, there’s no real requirement. So this capability, this offering is something we’ve seen the community ask for and need, but not necessarily be able to afford. What we look to do in this case is pilot more of a centralized capability, having this available for government-developed mobile apps to ensure the security, privacy, policy, all the above.’…” Read the full article here.
Source: CISA piloting mobile security tools under shared services program – By Justin Doubleday, July 12, 2021. Federal News Network.