Paul Kirvan, Hon FBCI, CISA

**NEW RESEARCH ALERT** Gartner's Communications Core Competency Framework and Assessment has been updated to reflect the competencies needed by modern Communications professionals in today's environment. Gartner Communications clients can access the research and toolkit here: https://lnkd.in/g49wJqTw

59

6 Comments

Navigating change as a leader is tough, especially when those changes reconfigure organizational structures or reshuffle management. In the latest collection of articles for Security Management (ASIS International), security leaders and SMEs weigh in about how to strike the right balance when meeting resistance, navigating new partnerships, and communicating the ongoing value of security. Many thanks to contributors William MacMillan, Richard Widup, Rachel Briggs OBE, Rachael Z, Mohammed Atif Shehzad, and more. https://lnkd.in/etHBD3Qg

29

Massachusetts Makes Changes to State Regulations Effective on October 11, 2025, all operator qualification (OQ) programs in the State of Massachusetts must meet new regulatory requirements. According to the 220 CMR Rules, the Department of Public Utilities will require the following.    By one year from October 11, 2024, all operator written qualification programs (OQ) shall list all covered tasks and include specific abnormal operating conditions for each task. [101.06 (19)(a)]   All OQ covered tasks shall be cross-referenced with applicable construction standards or specifications or applicable operation and maintenance activities including emergency response. [101.06 (19)(b)]   All individuals who perform OQ covered tasks shall be qualified in all the OQ covered tasks that they perform. [101.06 (19)(c)]   Individuals who are responsible for inspection or supervision of those performing OQ covered tasks shall be qualified in all the OQ covered tasks for which they are responsible. [101.06 (19)(d)]   Additionally, under 220 CMR - 101.07, the DPU requires the following for Contractor oversight. Maintain a ratio of not fewer than one qualified operator inspector to every two Contractor crews within its service territory. [101.07 (2)(b)] Each operator who utilizes a Contractor to perform Gas Work shall evaluate Contractor qualifications by: [101.07 (3)] (a)   Ensuring that each Contractor follows the operator’s written qualification program; (b)   Ensure that all personnel perform covered tasks are qualified; (c)    Maintain complete and accurate OQ training and certification records for each Contractor; and (d)   Reviewing and ensuring compliance with each Contractor’s Drug and Alcohol plan. Other topics effecting our clients are outlined below and may exceed the requirements of 49 CFR 192.   Proposed Construction: All new and replacement pipeline installation projects of 1,000 feet or more in length. All new and replacement projects with a MAOP of 125 psig or more. [DPU - 101.04 (a)(b)] Enhanced Overpressure Protection: Requires “slam shut” devices or equivalent measures, telemetered pressures, redundant regulators, and additional sensing-line protection. [DPU - 101.06 (2)] Expanded Meters and Regulators: Service regulators have additional distance requirements, unless utilizing overpressure technology. [DPU - 101.07 (b)(1)] Operators must provide direct supervision and maintain minimum inspector-to-crew ratios. This includes ensuring the Contractors meet the requirements of 49 CFR 192 subpart N, 193 subpart H, and 199 and 40. [DPU - 101.07] Operating Pressure for Low Pressure Distribution Systems: Set the maximum and minimum operating pressures. [DPU - 101.15] Stricter Leak Surveys and Documentation: Business districts require annual leak surveys at least one each calendar year at intervals not exceeding 15 months. [DPU - 101.17 (a)]

31

1 Comment

When I speak about Controlled Unclassified Information ("CUI") and the U.S. National Archives and Records Administration's #CUI program, I am often asked how government contractors should handle various scenarios. My most frequent responses tend to focus on ensuring you have laid a strong foundation early in your relationship with your prime contractor or the government, and ensuring you have certain basic business practices in place. To help contractors get a better sense for what to do, Fathom Cyber has published a set of CUI Tips and Tricks. They are available from our website by visiting: https://lnkd.in/ewfcTGXc

30

1 Comment

**Cybersecurity Testing: The New Frontier in Accreditation** As cyber threats evolve, so does the need for accredited cybersecurity testing laboratories. IAS is strengthening assessor expertise in this critical emerging sector—because your organization's digital security depends on laboratories you can trust. **Why cybersecurity lab accreditation matters:** Testing labs validate everything from network security protocols to IoT device vulnerabilities. Without proper accreditation, how do you know their results are reliable? IAS accreditation ensures cybersecurity testing labs meet rigorous international standards—proper methodologies, validated equipment, competent personnel, and traceable results. **Our focus areas:** • Network penetration testing labs • IoT security assessment facilities • Cryptographic testing laboratories • Security software validation centers The digital landscape is complex. Your testing partners shouldn't add uncertainty. Is your cybersecurity testing lab accredited? Let's discuss how IAS can support your credibility in this high-stakes sector. #Cybersecurity #TestingLaboratories #ISO17025 #DigitalSecurity #Accreditation #ConformityAssessment

33

2 Comments

"New York State Artificial Intelligence Governance", published now in April 2025 by the Office of the New York City Comptroller. 👇 This audit finds that New York State’s centralized guidance and oversight for #AI use across state agencies are inadequate. The document evaluates how agencies such as the New York State Office for the Aging, the NYS Department of Corrections and Community Supervision, the New York State Department of Motor Vehicles, and the New York State Department of Transportation manage #AI, revealing a patchwork of approaches. It recommends that the NYS Office of Information Technology Services enhance its #AI #policy, provide agency-specific guidance and training, establish robust #AIgovernance structures, and ensure coordination (specifically advising the New York State Department of Motor Vehicles to review its #facialrecognition system for #compliance with state standards). Link: https://lnkd.in/dAHCDCcF #artificialera #web3 #web4 #web5 #fintech #digitalera #digitaltransformation #ailaw #machinelearning #deeplearning #generativeAI #trustworthyAI #explainableAI #aiethics #artificialintelligence #explainableAI #responsibleAI #foundationmodels #GPAI #GAI #LLMs #NLPs #GenAI #frontierAI #narrowAI #AGI #ethicalAI #adversarialAI #RAG

23

Nuix: Enhancing Government Efficiency with Advanced Solutions The new administration's focus on government efficiency is clear. Nuix stands out as a key partner in helping agencies achieve this goal by streamlining investigations and enhancing productivity. Discover how Nuix can benefit your agency: 🕵️‍♂️ Significantly reduce investigation timelines: ⏩ Cut analysis time in half with 60% faster forensic processing 📊 76% quicker report writing Case Study: Police Scotland 📈 Enhance analyst productivity: 📦 Handle 75% more cases weekly 💻 Process 80% more devices weekly Case Study: Police Scotland ⏱️ Speed up case resolution: 🚀 Expedite complex investigations, like fraud cases, from years to months Case Study: Police Scotland – Fraud Case 🔧 Optimize resources: 👥 Achieve investigative breakthroughs with fewer analysts Example: Two analysts using Nuix accomplished the work of thirteen using traditional methods Case Study: Police Scotland – Drug Supply Cases 🔍 Unearth critical evidence: 📂 Efficiently analyze vast datasets to pinpoint essential evidence and suspect connections Example: 14 million pieces of evidence analyzed in a recent case Case Study: Police Scotland – Fraud Case Nuix empowers agencies to: 📊 Manage escalating data volumes effectively 🎯 Enhance investigative precision and efficiency 💡 Maximize the utilization of limited resources ⚖️ Expedite justice delivery and enhance citizen service 👉 Reach out today to explore how Nuix can support your agency in achieving the Department of Government Efficiency (DOGE) initiatives. #Nuix #GovernmentEfficiency #DOGE #Investigation #Forensics #DataAnalysis #Justice

32

NEW: Elastic becomes the latest company to announce an agreement with US General Services Administration through its OneGov initiative to offer major software discounts to federal agencies. More here: https://lnkd.in/eYG2gWyY via Nextgov/FCW

57

1 Comment

Agile for an IT help desk? It’s not where you might expect to find a transformation story, but that’s exactly what happened for one Tria Federal client.    Faced with slow ticket response times, insufficient user training, and inefficient tools, the team partnered with Tria’s Agile Practice to redesign how the help desk worked - from the ground up.    📊 The results speak for themselves:  🧠 45% boost in technical knowledge  ⚙️ 30% increase in software effectiveness  ⏱️ 35% reduction in resolution times    Read the full article: https://lnkd.in/ept8KqpW #PoweringPossible #LeanAgile #TeamTransformation #TriaFederal    Laura Jennings (Tatted Leader) Tim Borchert Diana Ceban Brian Wagner, MBA Bryce Golwalla Atchut Kanthamani Murali Krishna M Chris Katkocin Sean Vineyard Ray Khuo Andrew Hand  

23

5 Comments

Another Data Guardian stepped forward to be my guest for Episode 11 of Guardians of the Data. 💬 Hans Vargas-Silva flexed his Data Security muscles and we discussed how building business relationships and ensuring proper policy and procedures are in place are incredibly important to the success of standing up and running a program. 🔗 Catch the full episode now with the links in the comments! #GuardiansoftheData #Sentra #DataSecurity #DSPM

20

2 Comments