Cybersecurity is not only a problem for SMBs or even large corporations. In fact, it is considered by the government to be a national security concern as well. While there have been prior administrations to prepare administrative orders related to cybercrime and cybersecurity with rules for central agencies, this particular administrative order is critical considering the recent cybersecurity events. From SolarWinds to Colonial Pipeline, the increasing cyberattacks have proven that these events can interrupt operations and endanger essential infrastructure. Growing cyber threats that affect the infrastructure of the nation were the impetus for the Biden Administration’s Executive Order on Enhancing the Nation’s Cybersecurity (EO). The EO was signed several months ago, on May 12.
Some of the key points of the EO are listed below:
- The EO presented the policy of the Biden Administration regarding cybersecurity. It established prevention, detection, assessment, and remediation of cyber incidents as an immediate and critical priority, vital to national and economic security.
- Because the federal government needs to lead the way, the EO dictated that all federal systems should meet or exceed the standards and requirements for cybersecurity that the EO set forth.
- The Administration stated that “persistent and increasingly sophisticated malicious cyber campaigns” aimed at both the public and private sectors threatened American citizens’ security and privacy. The Federal Government recognized the need to upgrade its ability to “identify, deter, protect against, detect, and respond to these actions and actors.” The government stated that it was important to examine what happened during the many 2021 cyber incidents and apply the lessons learned through the attack and recovery process.
- The EO recognized that government action alone could not thwart cybercrime. Keeping Americans safe from nefarious cybercriminals requires partnership with the private sector, who in turn will need to be able to react to the ever-changing threat landscape proactively.
- The EO proposed the need for significant changes and robust investments to protect the important institutions that support our American lifestyle. The government must offer all of its resources and authority to defend and safeguard computer systems, whether cloud-based, on-premises, or hybrid. The protection and security strategies must include systems that process data and operate the essential machinery that guarantees our safety.The remaining language of the Order addressed the necessary steps and strategies that would be taken to ensure that the infrastructure of the Federal Government was protected and secure. These steps include appointing a National Cyber Director who would head an associated office within the executive branch. The new position would be responsible for standardizing the national cyber attack playbook. The EO also authorized establishing a Cyber Safety Review Board, created jointly by the Secretary of Homeland Security and the Attorney General. The Board will review and evaluate threat activity, vulnerabilities, mitigation activities, and agency responses. The Board’s membership will be comprised of both Federal officials and representatives from private-sector organizations.
Relevance for Your Organization
The rapid proliferation of cyber threats throughout both small businesses and big governments indicates the need for intensive preventative strategy. Through this EO, the government has set a precedent and given a framework for anyone to follow. Call Alliance IT today if your organization is ready to get serious about cybersecurity and you’d like a team with expertise and knowledge. We can help you assess and evaluate your current situation and create a plan that can protect you both before and after a security breach. Call today for more information.
