Deloitte forged what it calls a “first-of-its-kind” relationship with MS-ISAC. SC Media spoke to Srini Subramanian, Deloitte Risk & Financial Advisory leader for the state and local government, to get more details.
The string of incidents leaves many in both public and private sector questioning how government and industry alike can better tackle increasingly glaring security gaps throughout critical infrastructure.
Though contracts would not require remediation of vulnerabilities brought in through the programs, the government would be able to not renew contracts with companies whose handling of vulnerabilities raised researchers’ ire.
The TSA order marks the first mandatory cybersecurity practices for pipelines, and what some expect will be the first of more standards that the government puts in place to regulate how critical infrastructure operators protect networks and systems.
The new cryptographic standards will likely underpin IT design and guide industrial purchasing decisions for decades to come.
State officials presented their ongoing strategic cyber plans at the 2021 RSA Conference.
Reps. Mike Gallagher, R-Wis.., and Jim Langevin, D-R.I. — commissioners both — were optimistic about the continued contribution of the Cyber Solarium Commission in the year ahead during their keynote address at the RSA Conference.
At the core, Biden’s executive order looks to improve federal cybersecurity. But the tactics could have a trickle down impact that drive greater collaboration and improves security standards throughout industry.
If successful, the goal could mean greater partnership between government and industry, addressing decades of contracting morass that stilted sharing of information about vulnerabilities.
Biden signed a long-awaited executive order on cybersecurity, covering everything from federal procurement standards for private sector contractors to IoT security labels.
