This publication and the abstract below was published by House Committee on Oversight and Government Reform on March 14, 2018. ICIT strongly encourages you to visit the House Committee on Oversight and Government Reform to search for additional information security resources which are freely available.

Statement for the Record of Jeanette Manfra Assistant Secretary for Cybersecurity and Communications National Protection and Programs Directorate U.S. Department of Homeland  Security Before the U.S. House of Representatives Subcommittee on Information Technology Subcommittee on Government Operations Committee on Oversight and Government Reform Regarding State of Play: Federal IT in 2018

Chairman Hurd, Chairman Meadows, Ranking Member Kelly, Ranking Member Connolly, and members of the Subcommittees, thank you for today’s opportunity to discuss the state of federal cybersecurity. The Department of Homeland Security (DHS) serves a critical role in safeguarding and securing cyberspace, a core homeland security mission. The National Protection and Programs Directorate (NPPD) at DHS leads the Nation’s efforts to ensure the security and resilience of our cyber and physical infrastructure. This past December, the House voted favorably on H.R. 3359, the “Cybersecurity and Infrastructure Security Agency Act of 2017.” If enacted, this bill would mature and streamline NPPD, renaming our organization as the Cybersecurity and Infrastructure Security Agency to clearly reflect our essential mission and role in securing cyberspace. The Department strongly supports this much-needed legislation and encourages swift action by Congress to complete its work on this legislation.

NPPD is responsible for collaborating with federal agencies to protect civilian federal government networks, as well as with the Intelligence Community; law enforcement; state, local, tribal, and territorial governments; and the private sector to defend against cyber threats. We endeavor to enhance cyber threat information sharing across the globe to stop cyber incidents before they start and help businesses and government agencies to protect their cyber systems and quickly recover should such an incident occur. By bringing together all levels of government, the private sector, international partners, and the public, we are taking action to protect against cybersecurity risks, improve our whole-of-government incident response capabilities, enhance information sharing on best practices and cyber threats, and strengthen resilience.

[to read the full transcript, click the image to the right]