The Biden administration’s recently released National Cybersecurity Strategy calls for securing the digital ecosystem with clear-cut objectives that sends a strong message to the private sector: we need to invest in cyber resilience and build it into everything we do.
This is the first time we see an effort to give greater cybersecurity responsibility to technology providers, manufacturers and owners and operators of critical infrastructure. We are seeing a paradigm shift in what was voluntary now becoming mandatory. There is an opportunity here for us to accelerate our cyber preparedness.
The administration’s trailblazing approach puts cyber and the work we do everyday front and center in the digital ecosystem. Modernizing IT and OT infrastructure is crucial to defending our nation’s critical infrastructure, and of paramount importance to businesses across all sectors.
Today, the stakes are higher than ever, with geopolitical forces around the world operating not only on the physical battlefield, but deploying cyber warfare, too. Attacks have pivoted beyond email address theft to assaults that impact our critical infrastructure and society as a whole. With malevolent activity becoming so much more far-reaching and profound, the time to act is now.
Because this administration’s strategy is so groundbreaking, it should be top of mind for all CISOs to bring it before their boards and executive leadership teams, to educate them on how this could potentially impact the national security of the U.S., as well as advance their organizational missions.
For decades, CISOs have been sounding the alarm to executive leadership teams and to boards about the importance of our work. It has been difficult to secure investments unless there was a security breach. The Biden administration’s proactive approach serves as a catalyst to advance our respective cyber strategies and urges organizations to take action.
This strategy calls for increased accountability of private sector organizations to uphold cyber safe practices, products and services. Organizations must make the right investments to ensure their cybersecurity programs can withstand the scrutiny of the federal government, regulators and others who expect us to do the right thing.
Innovation in cyber will be key to attaining the Biden administration’s objectives. The administration has talked about making significant investments in R&D. The top priority is to identify gaps, and to find ways to work with partners in the ecosystem to fill them.
In recent years, we’ve seen an uptick in cyber innovation, which is promising. There are a plethora of startups and venture capital firms that are making great strides to solve cybersecurity challenges. The challenge continues to be keeping up with the pace of change.
We need a three-pronged strategy in support of our government’s goals for a safe and protected digital world:
EVALUATE: It’s important for all CISOs and organizations to read the National Cybersecurity Strategy and figure out how it applies to their missions.
ACT: Make sure your investments align with your program. Take a look at your program and identify your gaps and make sure you’re communicating that upstream.
COLLABORATE: Work with your vendors and partners to be a part of the innovation that’s required to keep organizations safe and support national security.
Firms are doing amazing work in cybersecurity to advance our ability to defend and protect our organizations and our country. The Biden administration’s National Cybersecurity Strategy gives us a fantastic opportunity to leverage all this ingenuity.