What You Need To Know About The Administration’s Cybersecurity National Action Plan

Bob Gourley February 11, 2016

The Whitehouse released a plan on 9 Feb 2016 that should be read and understood by cybersecurity professionals everywhere.

Here is my take on the most important point:

Whoever you are, wherever you are, you need to understand you are responsible for defending your technology. Do not think that you can abdicate or delegate this responsibility.
But the fact is that you cannot do things on your own. So think through who you need to work with in defending your technology.

Neither of those were said in the plan. But everything I read in the plan underscores their importance. You must defend yourself.

Those two defense points are very scalable, from your home to any small business to the largest enterprise. Don’t think the government or anyone else will defend your technology. That is your job. Accepting that fact does not mean you have to do it alone. Think about partners now.

As for the plan, here are the key points, taken from the Factsheet titled “Cybersecurity National Action Plan”:

The plan calls for establishing a “Commission on Enhancing National Cybersecurity.” This is may be a good step, but remember this type of strategic action does not produce quick results. I like the concept because it reminds me of some of the things done by President Clinton and President Bush on Cybersecurity, both of which produced solid recommendations for change. I really like the fact that it is being proposed as bi-partisan. Maybe that will help conclusions stick.
New action is called for to modernize government IT. Also a very good step. Many of the antiques in government cannot be defended and should have been replaced long ago.
The plan calls for a campaign to encourage people to use multi-factor authentication in everything. This is a good thing to do. It is one of the most important steps we can take to make it harder on the bad guys.
The plans calls for the creation of a federal chief information security officer. This may also be a good thing, if it is a position of power. Power in government flows from the President to Cabinet level positions. Everyone else is staff. Will be interesting to see who the CISO reports to.
Establish an action plan to enhance the ability of citizens to exchange information with government in ways that keep it secure. This is also a great step.

There are many other positives of this plan, but those points seem to be the most significant.

But back to the main point of this post. The most important thing to remember is you must defend your own IT.

Additional Reading:

The Air Traffic Control System: We all assumed it was vulnerable, but now we know

If You Drive A Car, Or Know Someone Who Does, You Must Read This…

Pulitzer Prize-Winning Fred Kaplan Explores The Secret History of Cyber War

Like Kip in Napoleon Dynamite, We love Technology

The Security Yearbook by Richard Stiennon

Breakthrough In Energy We Should All Track: New green technology generates electricity ‘out of thin air’

About Bob Gourley

Bob Gourley is the CTO and Co-Founder of the due diligence and cybersecurity consultancy OODA LLC , which publishes CTOvision.com and OODAloop.com. Bob's background is as an all source intelligence analyst and an enterprise CTO.

Gain Decision Advantage With Innovative Enterprise Software

For over 10 years CTOvision has consistently provided strategic context on the nature of technology and how to best leverage it for your personal and business objectives. We maintain the site in a way meant to help you find insights you need as fast as possible. To kick off a search use the search box […]

Gain Powerful Insights Into The Future With OODA Loop’s Technology Tracking

In a continuation of our journey to bring the best, most actionable technology content to enterprise decision-makers we have merged our research and reporting activities into the OODAloop.com site (both CTOvision.com and OODAloop.com are owned and operated by OODA LLC). CTOvision will focus only on one small niche, a vision for a technology enabled future. […]

Mitigating Advanced Threats with Scalable and Automated Malware Analysis: An interview of Chad Loeven and Mike Hylton

Mitigating Advanced Threats with Scalable and Automated Malware Analysis: An interview of Chad Loeven and Mike Hylton Scalable automated malware analysis has become a critical component of enterprise defense. When properly implemented it can be key to mitigating malware threats that otherwise bypass perimeter defenses. In this post we provide context enterprise architects and security […]

CTOvision and OODA: Big Changes Coming Soon

In a continuation of our journey to bring the best, most actionable technology content to enterprise decision-makers we are merging our research and reporting activities into the OODAloop.com site (both CTOvision.com and OODAloop.com are owned and operated by OODA LLC). This will give our community access to the same technology summaries we currently produce as […]

The Short Story From Arthur C. Clarke Every Officer in The Military Should Read and Heed

Like so many others in the national security domain I am tracking what I can about the new US Space Force, the newest US military force. I believe their mission is important and establishing Space Force was the right move. Space is, by definition, a domain that will require deep technological expertise to enable mission […]

This One Little Configuration Change Will Make It Harder For People To Steal Your Information

Editor’s note: We are aiming this tutorial at the non-technical person. Please share with anyone in your life who could benefit from this. -bg Cyberspace is a complex domain and our adversaries are always seeking new ways to steal information or spread their malicious code or hold our data for ransom. This is the big reason […]

Think Twice Before Deciding To Use A Personal VPN: You could be getting some really bad advice

From the 1930s to 1950s (far too long) the medical community just would not wake up to the fact that cigarettes could cause harm (see More Doctors Smoke Camels). Why did they stick with this misperception for so long? When so many good people come to the wrong conclusion it probably means some deeply human […]

Science Fiction Gadgets You Can Get Today

Technology is advancing pretty fast, at times influenced by the exciting world of Science Fiction. This video captures 10 of the tech developments first seen in SciFi that are available now. A key point of this, if you want to know what is in our future, watch more SciFi!

Super Bowl Ads Indicate Big Businesses Think You Are Afraid of AI

Tom Loftus provided an insightful review of some of Super Bowl ads in the 4 Feb 2019 Wall Street Journal. Like AI parody in SNL, these ads really poked fun at computers: Seriously, did anyone catch the commercials? If the Super Bowl is the zeitgeist, then it is safe to say that America is not […]

HBO’s Westworld: The Man In Black is a special kind of Twitter user

HBO’s Westworld is a modern take on the Michael Crichton SciFi tale of a robotic amusement park. The HBO version has a new twist. The creators/writers were all exposed to years of Twitter, which has influenced every episode and the entire arch of two seasons of the show. Now that season two is wrapping up, […]

Share this:

Related

About Bob Gourley

More Content

Cyber War

SciFi