New US Cyber Policy: What Will Change in Countering Attacks

Friend

Professional
Messages
2,653
Reaction score
842
Points
113
The upcoming initiatives will create a new vector for the development of digital defense.

On September 19, the U.S. Cyberspace Commission (CSC 2.0) released its fourth annual report, outlining 10 new cyber policy priorities for the next U.S. president and Congress. The document offers recommendations for protecting the country from cyberattacks that come from both state actors and ordinary cybercriminals acting in their personal interests.

CSC 2.0 was created in 2022 to continue the work of its predecessor, CSC, which has been developing strategies to protect the United States from cyberattacks since 2019. The new report highlights the need to further implement previously proposed measures.

Most of the report is devoted to assessing the extent to which previous recommendations have been implemented. According to CSC 2.0, 80% of the 82 proposals put forward in 2020 have already been fully implemented or are close to implementation, another 12% are at the stage of active implementation.

There have also been significant improvements in financial resources for U.S. cyber defense. For example, the Cybersecurity and Infrastructure Security Agency (CISA), led by Jen Easterly, has almost doubled its budget over the past five years. Significant efforts have been made to integrate efforts between the state and the private sector through the Joint Cyber Defense Initiative (JCDC).

Despite the progress made, the commission warns of a slowdown in the pace of implementation amid an increase in attacks by states and ransomware. This is a matter of concern in light of the increasing cyber threats facing the country's critical infrastructure.

In its CSC 2.0 report, it highlighted 10 new recommendations that the next U.S. president and Congress should consider as a priority. Among them: the development of a plan for systemically important enterprises, strengthening the role of the National Guard in cybersecurity, the development of cloud service security certification and the creation of a cyber statistics bureau.

Along with this, the commission recommends the introduction of certification programs for cybersecurity insurance, as well as strengthening legal liability for cyber incidents related to end products.

CSC 2.0 emphasizes that cyber threats continue to evolve, and in order to protect critical infrastructures, it is necessary not only to complete the measures already initiated, but also to develop new strategies. The next government will have to take on the task of adapting to new challenges by strengthening cooperation between government agencies and the private sector.

Source
 
Top