US Looks to Align Security Across Government

by admin 0 Comments

Security
Share on Facebook
Share on Twitter
Share on Pinterest
Share on LinkedIn
Share on Facebook
Share on Twitter
Share on Pinterest
Share on LinkedIn

US federal government agencies will coordinate their cyber defense strategies, under a new plan announced by the US government’s Cybersecurity and Infrastructure Security Agency (CISA).

Under the scheme, over 100 Federal Civilian Executive Branch agencies – US central Government agencies outside defense – will align their “collective operational defense capabilities” to reduce their cyber-risk.

The plan, known as FOCAL, for Federal Civilian Executive Branch (FCEB) Operational Cybersecurity Alignment (FOCAL), covers five areas of cybersecurity.

These include asset management, so organizations understand their cyber environment and “interconnected assets;” vulnerability management; defensible architecture so that infrastructure can withstand incidents; cyber supply chain risk management; and incident detection and response.

Unified Approach

According to CISA, each FCEB agency has its own mission, and is supported by its own network and systems architectures. However, CISA believes that a collective approach to cybersecurity will reduce risks both at individual FCEB organizations and when agencies interact with each other and share data.

“Federal government data and systems interconnect and are always a target for our adversaries. FCEB agencies need to confront this threat in a unified manner and reduce risk proactively,” said CISA’s executive assistant director for cybersecurity, Jeff Greene.

In the FOCAL plan documentation, CISA notes that there is currently no “no cohesive or consistent baseline security posture across all FCEB agencies.” This fails to take into account the current threat environment and the complex digital ecosystem across federal agencies.

The plan adds that federal agencies have improved cybersecurity in recent years, but more now needs to be done to coordinate security measures and incident response, especially on an inter-agency basis.

Read more about CISA cyber defense initiatives: CISA Launches New Cyber Incident Reporting Rules for US Defense Contractors

FOCAL sets out both “broad organizing concepts for federal cybersecurity,” and tactical guidance for steps agencies should take, in the coming year, to improve security. The plan also stresses the need for standardization and consistency across federal cyber defense.

Although CISA has developed the FOCAL plan for the US public sector, the agency suggests it might be useful for other public sector bodies and enterprises looking to coordinate their cybersecurity.

This article was originally published by Infosecurity-magazine.com. Read the original article here.
Share on Facebook
Share on Twitter
Share on Pinterest
Share on LinkedIn

Products You May Like

Articles You May Like

Ivanti Warns of Active Exploitation of Newly Patched Cloud Appliance Vulnerability
Critical Infrastructure at Risk From Email Security Breaches
CosmicBeetle joins the ranks of RansomHub affiliates – Week in security with Tony Anscombe
Record $65m Settlement for Hacked Patient Photos
Microsoft Vows to Prevent Future CrowdStrike-Like Outages

Leave a Reply

Your email address will not be published. Required fields are marked *