CISA Expands Access to Beta Mobile Vetting App (MAV) Service

Credit: Cybersecurity and Infrastructure Security Agency (CISA)

The U.S. Cybersecurity & Infrastructure Agency (CISA) now provides all Federal Civilian Executive Branch (FCEB) agencies with free access to its beta Mobile App Vetting (MAV) service, according to a prepared statement.

Eighteen agencies are currently using MAV to identify vulnerabilities, flaws and risks across their mobile apps, CISA noted. This has helped MAV users make risk-based decisions before they utilize government-developed or third-party apps.

How U.S. Customs and Border Protection (CBP) Is Using MAV

CBP started using MAV in early 2022, CISA indicated. At this time, CBP needed an app-vetting capability to strengthen its mobile security.

Today, CBP uses MAV to vet its library of mobile apps for security issues before these apps are deployed across on its smartphones and tablets, CISA stated. CBP recently detected several security issues with a third-party COVID-19 contact-tracing app. This prompted CBP to stop using the app.

CISA Looks to Bridge Gender Gap, Add Staff

Along with offering MSV to all FCEB agencies, CISA in March 2023 signed a Memorandum of Understanding (MOU) with Women in CyberSecurity (WiCyS), an organization that focuses on the recruitment, retention and advancement of women in cybersecurity. Together, the organizations will raise awareness about careers available in cybersecurity. In addition, they will build a pipeline for the next generation of women in cybersecurity.

Furthermore, CISA in March 2023 indicated that it has nearly 300 vacant positions that it is looking to fill. CISA is searching for job candidates to fill roles across its cybersecurity, stakeholder engagement, and integrated operations divisions from all levels of experience. It also intends to host hiring events in May 2023.

CISA offers its Decider tool and many other tools and resources to help the cybersecurity community detect and address threats. It continues to explore partnerships to improve critical infrastructure security and resilience across the United States.

Dan Kobialka

Dan Kobialka is senior contributing editor, MSSP Alert and ChannelE2E. He covers IT security, IT service provider business strategies and partner programs. Dan holds a M.A. in Print and Multimedia Journalism from Emerson College and a B.A. in English from Bridgewater State University. In his free time, Dan enjoys jogging, traveling, playing sports, touring breweries and watching football.