Cybersecurity Executive Order
The Cybersecurity Executive Order (EO) was issued on May 12th, 2021. The EO applies primarily to the federal agencies and federal systems. It will however impact government contractors and subcontractors as well. Other industries will also be more mindful of the items covered in EO. The summary is:
- Removing barriers to sharing threat information.
- Modernizing federal government cybersecurity.
- Enhancing supply chain security.
- Improving detection of cybersecurity vulnerabilities and incidents.
The order also emphasis the move to the cloud in any format Iaas, Paas, Saas. It also includes provisions around identity and access management using MFA. It addresses end point security and encryption for both data in transit and at rest. The EO is also focused on prevention and early detection of possible security incidents.
The government ecosystem aims to become "cyber safe". Cybersecurity personnel, technology and spend will also increase to support these initiatives. While the EO is still being commented on and changed, the main provisions will stay the same. For a complete read of the Cybersecurity EO see Executive Order on Improving the Nation's Cybersecurity | The White House.
Director of InfoSec
3 年I hope he goes a lot further than asking Russia to not hack us. I literally dropped my head into my hands watching that speech.