November 18, 2021
ShareExecutive Order on Improving the Nation’s Cybersecurity
By Timothy Shields, Esquire
A business owner must manage many things when it comes to running a business. The obvious concern is making enough revenue to cover your payroll and expenses. But, aside from making sure that your company makes a profit from its operations, you also need to protect your data at all times! With the latest advancements in technology, it has become easier for hackers to compromise the systems of firms and companies. As such, there is a need to prioritize strengthening cybersecurity for your business. Before you say that your business is “too small” to be a hacker’s target, all companies are at risk. Even if you don’t have valuable data, your system may be used to attack your clients and customers. Even a 3 employee dentist’s office is a target!
Click here to read our blog on the top 3 common desktop cybersecurity threats.
As major security breaches have become national news and ransoms have approached $100 million, the Federal Government is taking action to address this rapidly growing issue. On May 12, 2021, President Biden signed an Executive Order that focuses on improving the Nation’s Cybersecurity. Section 1 of the said Executive Order expressly provides for the policy of the United States when it comes to this matter. The provision reads: “The United States faces persistent and increasingly sophisticated malicious cyber campaigns that threaten the public sector, the private sector, and ultimately the American people’s security and privacy.”
Discover The Federal Obligations
Under the Executive Order on Improving the Nation’s Cybersecurity, it was emphasized that the Federal Government has the duty to identify, deter, protect against, detect, and respond to all issues, problems, and matters related to cybersecurity.
However, the President recognizes the fact that this duty must not solely fall on the government alone. The cooperation of the private sector is also essential, which is why there is a need to create partnerships between the state and private entities.
It must also be noted that the Executive Order provides for a concrete timeline on how government agencies must act to comply with the mandates indicated therein. The objectives of the Executive Order were clearly laid out. The next step is for the various branches of the government to take action.
Cyber Incidents: Best Security Practices
At this point, it is crucial to emphasize that the Executive Order also mentions that prevention, detection, assessment, and remediation of cyber incidents is a top priority and essential to national and economic security. For this reason, the government and the private sector are expected to work hand in hand when it comes to dealing with cybersecurity threats or problems.
This is the list of the security best practices that the Federal Government must focus on:
- Advance toward Zero Trust Architecture
- Accelerate movement to secure cloud services, including Software as a Service (SaaS), Infrastructure as a Service (IaaS), and Platform as a Service (PaaS)
- Centralize and streamline access to cybersecurity data to drive analytics for identifying and managing cybersecurity risks; and
- Invest in both technology and personnel to match these modernization goals.
Enhancing Cybersecurity
The implementation of the provisions in the Order will surely help in identifying best practices and standardizing cybersecurity rules and regulations in the country and strengthening collaboration between the Federal Government and the private sectors. With this Executive Order, several branches of the government are now tasked to act efficiently to meet the objectives relating to cybersecurity.
An important aspect of your planning is to consult with an experienced cybersecurity attorney.
Timothy Shields
Partner, Data Privacy, Technology, & Social Media
Kelley Kronenberg-Fort Lauderdale, FL.
(954) 370-9970
Email
Bio
DISCLAIMER: This article is provided as a courtesy and is intended for the general information of the matters discussed above and should not be relied upon as legal advice. Neither Kelley Kronenberg, nor its individual attorneys or staff, are responsible for errors, omissions and/or typographical errors – always seek competent legal counsel.