Continue reading on DataGuidance with:
Free Member
Limited ArticlesCreate an account to continue accessing select articles, resources, and guidance notes.
Already have an account? Log in
USA: White House issues National Cybersecurity Strategy
The White House announced, on 2 March 2023, the publication of the National Cybersecurity Strategy. In particular, the strategy highlights the need to rebalance the responsibility to defend cyberspace by shifting the responsibility away from individuals and local governments to organisations, and to realign the incentives to favour long-term investments enabling planning for defence against cyber threats. More specifically, the strategy outlines that the approach to enhancing collaboration in cybersecurity includes:
- defending critical infrastructure - expanding the use of minimum cybersecurity requirements in critical sectors, enabling public-private collaboration, and defending and modernising federal networks and updating federal incident response policy;
- disrupt and dismantling threat actors - strategically employing national tools to disrupt threat actors, engaging private sector in disruption activities through scalable mechanisms, and addressing ransomware threats through a comprehensive federal approach;
- shaping market forces to drive security and resilience - promoting privacy and the security of personal data, shifting liability for software products and services to ensure secure development practices, and ensuring that federal grant programs promote investment in new infrastructure;
- investment - reducing systemic technical vulnerabilities across the digital ecosystem, prioritising cybersecurity research and development in technologies, such as postquantum encryption and digital identity solutions, and developing a robust national cyber workforce;
- international partnerships - leveraging international partnerships to counter threats in the digital ecosystem, increase the capacity of international partners to defend against cyber threats, and work with allies to make secure, reliable, and trustworthy supply chains for ICT.
However, the strategy also notes that the steps already taken to secure cyberspace include Executive Order 14028 on Improving the Nation's Cybersecurity and National Security Memorandum 5 on Improving Cybersecurity for Critical Infrastructure Control Systems, among others.