Sean F.

New Substack: The Road Ahead For Secure Mobile Voting Technology I have spent $10 million and brought together a dream team of cybersecurity experts to build Mobile Voting technology that is open-source, end-to-end verifiable, and free to implement for any interested election jurisdiction. Later this year, the team will release the final mobile voting software development kit for jurisdictions, and today we have made the project repository public so anyone can track our progress. As we look to the future of Mobile Voting and how our efforts will expand to select cities across America this year, security remains core to our mission. It’s important that we scale mobile voting when our technology meets the highest standards for security. And we will be scaling soon. Learn more on my Substack: https://lnkd.in/d69fnYJ6

23

Is your firm ready for the new DoD cyber rules expected in 𝐞𝐚𝐫𝐥𝐲 𝐍𝐨𝐯𝐞𝐦𝐛𝐞𝐫?     Big changes are coming for firms working on DoD projects. Once the rule is in effect, you'll need to demonstrate your cybersecurity level to secure and maintain your contracts. This requirement is key to staying competitive.    We've outlined the essential steps you should take now, including:    ✔️ Conducting a readiness check  ✔️ Strengthening security controls  ✔️ Maintaining compliance documents  ✔️ Implementing team training    See the full breakdown and find out where you stand with our quick quiz.   https://conta.cc/4nyEyQS   #CMMC #GovCon #DoDContracts #Cybersecurity #Compliance #AEC 

12

What happens when a public defense agency gains real-time visibility into every matter, hour, and dollar? For Montana OPD, it meant completing 85–90% of system enhancements in-house, securing significant budget increases, and streamlining operations statewide. Mitratech CaseCloud™ didn’t just modernize their workflows—it strengthened their mission. Read the full story here: https://hubs.li/Q03VxtjK0

12

From LOGCAP to Lürssen, the map is changing Army restructuring, European consolidation, DHS buildout, and AI-driven contracting point to a new GovCon environment. The Q3 Industry Report lays it out. Newsletter link in comments.

17

2 Comments

Federal programs shouldn't have to choose between visibility and privacy. That's why DTEX Platform v7 for Government provides both under an active FedRAMP Moderate ATO. Built for federal agencies and contractors, Platform v7 unifies Insider Risk Management, Risk-adaptive DLP, and UEBA/UAM to surface context and intent, detect threats earlier, and adapt controls in real time. Platform v7 delivers the assurance federal programs expect with U.S.-only data residency and U.S.-citizen-only administration, FIPS 140 encryption, and CNSSD 504 support. Explore the guide and see how DTEX strengthens federal security programs without slowing the mission: https://lnkd.in/g9xWeyu5

32

1 Comment

Looking to secure federal cloud contracts with Kubernetes? FedRAMP compliance is a key requirement for accessing U.S. federal cloud opportunities. But for Kubernetes teams, meeting these strict security and operational standards can be complex. This guide outlines a clear path to compliance, including: • Core requirements such as RBAC, logging, and continuous monitoring • How to reduce manual effort with checklists and automation • Guidance on aligning Kubernetes environments with FedRAMP controls Explore the practical steps to accelerate your compliance journey. Read more: https://buff.ly/WaDdj9s

10

In light of the recent CISA alert dated September 23, 2025, regarding a widespread supply chain compromise in the npm ecosystem, organizations must remain vigilant. The self-replicating worm, dubbed "Shai-Hulud*w" has impacted over 500 packages, enabling the theft of GitHub Personal Access Tokens and cloud API keys for services like AWS, GCP, and Azure. This malware exfiltrates credentials to actor-controlled endpoints and public repositories, while propagating by injecting code into additional packages. Such incidents highlight the cascading risks in software dependencies, potentially leading to unauthorized access, data breaches, and operational disruptions. This underscores the critical need for robust cloud security practices, particularly as enterprise cloud adoption accelerates. The Cyber Security Agency of Singapore (CSA) has released the Cloud Security Companion Guides, aligned with national standards such as Cyber Essentials and Cyber Trust. These guides provide practical frameworks for implementing secure configurations, access controls, vendor management, and incident response essential for mitigating supply chain vulnerabilities. What steps is your team taking to address supply chain risks? Share your insights below. *Shai-Hulud is a fictional giant sand-dwelling creature from Frank Herbert's science fiction series "Dune." It is known for being aggressive and territorial, playing a significant role in the desert ecosystem of the planet Arrakis. #CyberSecurity #CloudSecurity #SupplyChainSecurity #CSACyberTrust #SingaporeCompliance #MomentumZ https://lnkd.in/g8SqdQAC

6

NEW: Spry Methods, Inc. Selects TechnoMile to Modernize Federal Sales Operations We’re excited to welcome Spry – a trusted provider of IT and security solutions to federal law enforcement, defense, and civilian agencies – to the TechnoMile client community. To further strengthen its opportunity management capabilities, Spry selected WinIt CRM, our AI-enabled CRM that's purpose-built for GovCon small businesses, to: ▪️ Automate BD and capture workflows ▪️ Improve visibility into pipeline and sales performance ▪️ Streamline federal opportunity identification ▪️ Scale on the Salesforce platform With WinIt, Spry gains a plug-and-play solution tailored to its BD and capture processes and a flexible solution that can grow alongside the company's mission-focused work. Read the full announcement → https://lnkd.in/gnNtnf2v #GovCon x #TechnoMile x #CRM x #FederalContracting x #CaptureManagement x #BusinessDevelopment x #WinItCRM x #Spry x #Salesforce x #DigitalTransformation

25

🚀 BIG NEWS: Your pending clearances might come faster than you think! @OMNI Federal has been awarded a potential $427 million contract with the DCSA to support the NBIS modernization via cloud and DevSecOps. 🔍 About the Project: NBIS is a platform used across the federal government for background investigations, case initiation, adjudication, and continuous vetting. OMNI will provide: Secure landing zone deployment in AWS GovCloud at DoD Impact Level 4 CI/CD pipeline development and DevSecOps tooling Agile delivery, sprint support, user onboarding, software integration, and compliance with DoD standards 💬 Why it matters: A critical step in federal clearance modernization, this contract positions OMNI Federal to shape how secure cloud systems and DevSecOps practices are adopted across the industry. Their work will drive faster, more secure background vetting workflow, essentially supporting national security priorities every day. #GovCon #DevSecOps #CloudModernization #DCSA #NBIS #AWS #Govtech #Cybersecurity #clearance

22

4 Comments

Ouch. The DOJ announced a $421,234 settlement with Swiss Automation Inc. for failure to provide adequate cybersecurity for technical drawings of parts supplied to DoD contractors. ​ ​To be clear, there was 𝗻𝗼 𝗰𝗼𝗻𝗳𝗶𝗿𝗺𝗲𝗱 𝗯𝗿𝗲𝗮𝗰𝗵. Nothing was actually compromised. This case simply highlights the DOJ cracking down 𝗼𝗻 𝗳𝗮𝗹𝘀𝗲 𝗰𝗹𝗮𝗶𝗺𝘀! 𝗜𝗻 𝘁𝗵𝗶𝘀 𝗰𝗮𝘀𝗲, where Swiss Automation knowingly submitted invoices for payment while failing to meet the cybersecurity standards required by its contracts . And we saw this last year with defense contractors who checked boxes to claim CMMC compliance without implementing the actual controls. ​ How many companies are (Unknowingly? knowingly?) guilty of the same thing? ​ 𝗧𝗵𝗮𝘁 𝗲𝗿𝗮 𝗶𝘀 𝗼𝘃𝗲𝗿. The DOJ is now actively investigating cybersecurity compliance claims, and companies are being sued for millions when investigators uncover gaps between documentation and reality. ​ This is just the beginning. The days when self-reporting are dying. ​ If your compliance strategy depends on no one checking, it has an expiration date.

16

I've been investing in and reviewing crypto projects since 2017. Let's face it, many projects in this space lack real utility or adoption. Mix in scams and memes, and the industry has seen a downturn for the worse. But crypto is far from dead. Like any maturing market, it's now seeing a resurgence in real value. The focus is shifting toward projects with true product market fit that can create disruptive products. So, what kind of products stand out by being decentralized, trustless, and hopefully open source? The ones being built on #bittensor. You can think of bittensor as a YC for decentralized digital commodities. Every subnet competes for attention and investment. It’s capitalistic by design. The weakest projects fail and are eliminated, while the strongest thrive and attract more funding from the ecosystem. Taoshi builds on bittensor. Its flagship, Subnet 8, the Proprietary Trading Network, focuses on the retail prop firm industry, a space long plagued by misalignment, scams, and predatory practices. Traders who think they’ve profited from funded accounts often watch the withdrawal button vanish from their app. It’s the perfect example of how crypto’s core principles of open source, trustlessness, and decentralization can solve real problems in a billion dollar industry. On Subnet 8, traders can review the open source rules themselves and can never be denied a payout. It’s an existing market with real demand, now met by a bittensor subnet offering a truly disruptive solution. I believe many subnets will go on to challenge or completely reinvent existing industries. It’s the first crypto ecosystem where teams are genuinely incentivized to find product market fit. Scams and memes can’t survive here. This is where teams are building real, sustainable, cash flow businesses. Nowhere else I’d rather build, the future is bright for bittensor. Checkout more details in this write up by The TAO Daily on how we're disrupting the prop firm industry below. https://lnkd.in/g_smewge

13