Cybersecurity: Security Public Networks, Securing the Nation - Nascio

0 downloads 104 Views 376KB Size Report
Cybersecurity: Security Public Networks, Securing the Nation. Nation-states ... The goal should be the best security pos
Cybersecurity: Security Public Networks, Securing the Nation Congress must act on legislation that incentivizes information sharing, promotes secure IT systems, and a skilled workforce to maintain them The U.S. Department of Homeland Security should continue to work with states to protect our nation’s digital assets, including maturing and expanding cybersecurity programs and personnel that support the enhancement of cybersecurity preparedness, protection, response and recovery in the states

Nation-states, “hacktivists,” and criminals are attempting to exploit state government networks for economic gain, political espionage, and to compromise critical infrastructure. Cybersecurity threats are increasingly complex and which demands even greater investment in defending the security of our public networks. As part of the nation’s critical infrastructure, the state government IT sector demands the attention, prioritization, and investments necessary to prevent the disruption of services and ensure continuity of government. States are protecting federal programs they administer while safeguarding sensitive information and supporting mission-critical homeland security activities. While state investment in cybersecurity is increasing, budgets are still not sufficient to fully implement effective cybersecurity programs. Federal executive and congressional action has led to some positive first steps, creating and codifying programs to support greater security across the public sector. However, without further action from across the federal government, our nation will continue to lack the level of federal and state investment required to reduce risk from cyber threats and ensure the safety of our citizens. Collaboration has begun, but must be matured and formalized. Specific and dedicated federal cybersecurity funding that does not compete with more tangible physical security requirements or citizendirected grant programs is needed. Direct funding of cybersecurity is essential to preserve the states’ ability to effectively serve citizens during a targeted cyber-attack, protect federal programs (such as Medicaid, TANF, SNAP and others) administered by the state, preserve the privacy of personal and sensitive information, and support our first responders. Despite progress, without directed resources and continued development of collaboration against threats, the nation’s cybersecurity needs will not be met. Federal agencies must also be careful not to prescribe cybersecurity regulations that limit innovation or focus on the means rather than the end result. The goal should be the best security possible—not a checklist that focus narrowly on individual means, but a substantive approach to enterprise-wide security.

444 North Capitol Street, Suite 642 Washington, D.C. 20001 202.624.8477 [email protected]