Blog
July 12, 2023
        Open-Source Supply Chain Security: Addressing a Key Challenge
        By Robert Bruce, Deputy CTO
In January 2022, the developer behind two immensely popular open-source NPM packages — “colors” and “faker” — intentionally disrupted them, citing overwhelming workload. The ripple effects were felt far and wide, causing thousands of projects…      
    
      
            June 1, 2023
        Leveling Up Lowers Big Truck Crashes
        The National Highway Traffic Safety Administration (NHTSA) estimates that over twenty thousand people died in motor vehicle traffic crashes in the first half of 2022. Fatalities in crashes involving at least one large truck (gross vehicle weight rating of more…      
    
      
            May 15, 2023
        Best Practices for Implementing PPBE Tools and Platforms
        Planning, Programming, Budgeting and Execution (PPBE) processes in the Federal government are markedly different from the corporate performance management processes (CPM), which are standard in the private sector. Agencies’ varied organizational structures, reporting obligations, and legal requirements create unique challenges…      
    
      
            May 9, 2023
        Trends from the 2023 RSA Security Conference
        By Dr. Robert Buccigrossi, TCG CTO 
The RSA 2023 Conference was a gala affair of security companies demonstrating their cutting-edge services.  I saw four key trends to which Federal agencies should pay attention, if they aren’t already. 
XDR: eXtended Detection and Response —…      
    
      
            April 27, 2023
        Kanban Best Practices to Elevate Client Services
        By Tige Nishimoto, TCG Agile Capability Lead
As Agile practitioners know, one of the more popular lean-workflow management methods is Kanban. Kanban helps visualize work, maximize efficiency, and improve continuously. Work is represented on Kanban boards, allowing users to optimize…      
    
      
            February 27, 2023
        Zero Trust, NIST Recommendations, and Cloud Freedom
        by Robert Buccigrossi
The Cybersecurity and Infrastructure Security Agency and National Security Agency released an advisory that warned of a “widespread cyber campaign involving the malicious use of legitimate remote monitoring and management (RMM) software.” Targeting RMM software (through cracking…      
    
      
            February 8, 2023
        Sharpen the Agile Saw: 3 Simple Ways to Get Started
        If projects are going as planned – steady, consistent sprint burndowns with quality, predictable deliverables – is it really necessary to sharpen the Agile saw? Yes. All blades dull eventually, and if you wait too long to care for essential…      
    
      
            January 5, 2023
        Sustainability Reporting is Important for GovCons: How a B Corp Cert Can Help
        Certified Benefit Corporations (B Corps) will be given a boost when competing on the upcoming OASIS+ Government Wide Acquisition Contract (GWAC), based on the latest draft issued by the General Services Administration (GSA). While the accreditation is only worth one out…      
    
      
            November 8, 2022
        Rapid Prototyping in the Federal Sector: Finding the Right Solutions Faster
        Natural disasters. Swings in financial markets. New cybersecurity threats. The world moves quickly but technological change in the Federal sector often does not. 
Federal agencies need development methods that allow them to pivot quickly, explore new ideas with less investment,…      
    
      
            November 1, 2022
        Infinitely Scalable: FCC’s Electronic Comment Filing System
        The FCC Electronic Comment Filing System (ECFS) enables the public to submit comments on FCC proceedings. It is an important tool for the FCC’s rulemaking process, allowing the public to have a voice in developing the rules that affect the nation’s…