Tag Archive for: Passes

New Jersey passes resolution affirming trade with Taiwan

/in


  • By Jonathan Chin / Staff writer, with CNA

The New Jersey General Assembly on Thursday passed a resolution backing a bilateral trade agreement between Taiwan and the US, and supporting Taiwan’s bid to participate in the WHO and other international organizations.

The resolution marking the sister-state relationship between Taiwan and New Jersey established in 1989 unanimously passed the lower chamber of the state house by a vote of 75-0.

Hans Chang (張俊裕), deputy director-general of the Taipei Economic and Cultural Office (TECO) in New York, witnessed the resolution’s passage as a special guest.

Photo: REUTERS

Taiwan and New Jersey share free and democratic values and strong economic ties, and the resolution would deepen the partnership, said Assemblyman Robert Karabinchak, a US Democrat who sponsored the bill.

Taiwan thanks New Jersey state lawmakers for their support and friendship and looks forward to strengthening the bilateral partnership, TECO said in a statement.

In March, President Tsai Ing-wen (蔡英文) met New Jersey Governor Phil Murphy during her transit through New York, and discussed the nation’s collaboration with the governor’s economic and infrastructure initiatives, it said.

Taiwan’s six core strategic industries development plan could complement Murphy’s policies, especially in high-tech industries, green energy, traffic, communications, biotechnology and secure supply chains, it said.

The resolution mentions the increased collaboration between Taiwan and the US in supply chain resilience, efforts to counter Beijing’s economic coercion, development of a digital economy and improvement of Internet security, among other issues, TECO said.

The assembly urged Washington to continue supporting Taiwan’s effort for inclusion in the WHO, International Civil Aviation Organization and Interpol, it said.

The nation’s partnership with New Jersey is strong, with Taoyuan and Newark inking a…

Source…

SAF’s Digital and Intelligence Service to be set up after Parliament passes amendments to SAF Act and Constitution; WP objects to changes to Constitution

/in


While the SAF has built up capabilities in Command, Control, Communications, Computers, and Intelligence (C4I) in its three existing services – Army, Navy, and Air Force – Dr Ng said the C4I community’s role has been largely that of a “supporting agency”, akin to combat support, logistics and maintenance.

With growing use of disinformation in warfare and cyber threats, Dr Ng said the SAF needs a dedicated service to raise, train and sustain cyber troops and capabilities to defend Singapore’s digital borders.

“We are thankful that hitherto, our intelligence agencies have not detected any campaign against Singapore of that nature in the digital domain,” said Dr Ng.

“But we should not wait for one and it would be prudent to start and build up the fourth service. That alone would serve as a deterrent.”

He added that the DIS will ensure that Singapore is defended against the full spectrum of threats against potential aggressors.

“The digital environment is more porous than the physical one, but the DIS will be responsible to guard against these aggressors in that domain,” he said.

For the SAF, the DIS will protect its networks and systems and strengthen soldiers’ commitment and resilience in operations. It will also continue to provide accurate, relevant and timely intelligence to support SAF operations, and capitalise on cutting-edge digital technologies to advance the SAF’s digitalisation as a networked force.

As for threats to Singapore’s internal environment, it will work closely with the Home Team, Cyber Security Agency (CSA) and other national agencies to leverage on their strengths in Singapore’s digital defence.

This is similar to the SAF’s support to the whole- of-government for counter-terrorism, said Dr Ng.

SAFEGUARDS AGAINST ABUSE

During the debate on the SAF Bill, several Members of Parliament (MPs) raised concerns such as whether safeguards are in place to protect against abuse of powers and information leaks that could compromise national security.

In particular, MP Zhulkarnain Abdul Rahim (PAP-Chua Chu Kang) and MP Dennis Tan (WP-Hougang) asked if foreigners could be part of the DIS.

Responding to their questions, Dr Ng said:…

Source…

Senate passes cybersecurity bill amid fears of Russian cyberattacks

/in


The Senate unanimously passed cybersecurity legislation on Tuesday that would require companies in critical sectors to alert the government of potential hacks or ransomware. 

The Strengthening American Cybersecurity Act, a package of three bills sponsored by Sen. Gary PetersGary PetersHouse passes bill to reform Postal Service operations The Hill’s Morning Report – Biden aims at ISIS terrorists, defends NY police Biden sends DNC dollars to House, Senate committees MORE (D-Mich.), comes as U.S. officials urge the private sector to gear up for possible Russian cyberattacks in retaliation for U.S. sanctions over its invasion of Ukraine. 

“Cyber warfare is truly one of the dark arts specialized by Putin and his authoritarian regime. And this bill will help protect us from Putin’s attempted cyberattacks against our country,” said Senate Majority Leader Charles SchumerChuck SchumerFive viral moments from Biden’s State of the Union Schumer goes viral for start-and-stop ovation at State of the Union Democrats press top pharmaceutical representative on price increases MORE (D-NY) following the passage of the legislation. 

One of the bills would require companies to report substantial cyberattacks within 72 hours and ransomware payments within 24 hours to the Cybersecurity and Infrastructure Security Agency (CISA).

Another bill in the package would update federal cyber laws to improve coordination between federal agencies. It would also require agencies to share cyber incidents with CISA. 

Last week, CISA officials urged federal agencies and the private sector to remain vigilant against Russian cyberattacks, especially following the economic sanctions imposed by the U.S. and its allies.

“Every organization—large and small—must be prepared to respond to disruptive cyber activity,” CISA officials said in an updated guidance.

In a statement on the bill’s passage, Senate Intelligence Committee Chair Mark WarnerMark Robert WarnerRussia widely expected to escalate violence in Ukraine Congress races clock on Ukraine aid amid invasion Live coverage: Russian military convoy stretching 40 miles outside Kyiv MORE (D-Va.) said “at a time when we are facing significant threats of…

Source…

Fintech startup passes SOC 2 audits with serverless security

/in


A startup providing AI-based cloud services to financial customers favors serverless computing for security, despite the challenges of translating ISO and SOC 2 audit requirements for the cloud-native architecture.

CrossBorder Solutions began to seek certification under the American Institute of CPAs’ Service Organization Control (SOC) 2 and the Information Organization for Standardization (ISO) 27001 programs for its cloud-based products in 2019. While it isn’t required by law to demonstrate compliance with these programs, the company saw a business advantage in demonstrating to its highly regulated customers that it was compliant with those standards.

“We did the certifications to help clients understand that we’re safe to do business with,” said James Ford, who served as the company’s chief security architect from 2019 until October 2021. “SOC requires [them] to do vendor risk management, [which is] basically making sure all your vendors … are more or less doing ISO and SOC.”

The problem with this, at first, was that the company also ported its entire IT environment in early 2020 to AWS, which provides services that don’t require IT teams to manage virtual machine resources — also known as serverless computing. These include AWS Lambda function as a service, along with the AWS Fargate managed container service, Aurora database as a service, application load balancers and CloudFront CDN.

“Serverless does not equate to infrastructure-less,” Ford said. “What it really makes difficult is trying to explain to the auditor what you don’t do and what you don’t have control of.”

ISO, SOC 2 audits require people and policy plans

Ford said he believes CrossBorder was among the first companies to receive SOC 2 certification in a fully serverless environment, but the process ultimately involved more of a focus on people and process issues than technological problems.

James Ford, former chief security architect, CrossBorder SolutionsJames Ford

First, there was the work required to help IT compliance auditors understand cloud services that didn’t fit what ISO and SOC 2 controls were originally designed to describe: private data centers that contain servers.

“It’s a lot of talking to the auditor and talking them off the ledge at some…

Source…