New US National Cyber Director

Christopher Inglis (pictured), the US’s first-ever National Cyber Director, is building out his office with an inaugural strategic intent statement. 

One of the early efforts of the new National Cyber Director is to tackle how to strengthen the critical infrastructure of the United States. 

The key to approaching that overwhelming task is to drive coordination across the federal government and the critical sectors, and to identify the crucial elements that connect each component, versus trying to protect all sectors at once, which is not quite possible, explained Inglis.

In particular, Inglis says he wants the government to take a tougher, more proactive approach to those who threaten America’s networks: degrade their capabilities and demonstrate how they would suffer should they attack.

The office plans to focus on both national and federal cyber security, assessing and reviewing budgets, supply chain security, planning and incident response, workforce development and working with Congress and the private sector.

Inglis said that technology is supposed to ease our lives, to enable self-betterment, to bring us closer to our loved ones and to our ambitions.  "Digital connectivity is not some occasionally destructive force of nature to be dispassionately tracked and mitigated, but a transformational tool to be wielded in furtherance of our highest ambitions... Recent history has forced us to predominantly consider cyber security in negative terms, which hackers must be stopped, vulnerabilities patched, and activities condemned, sanctioned, or disrupted. It is easy to forget that cyberspace was originally built to enrich our lives."

Malicious activity in cyberspace has become irresistibly attractive to geopolitical competitors and criminals alike. It enables a level of anonymity, of global reach, and of efficiency of scale that equips countries with asymmetric capabilities that challenge conventional conceptions of defense and deterrence.

Criminals and extremists similarly have the capabilities to threaten unprecedented levels of disruption and coercion. 

Inglis outlined how his office will coordinate the various agencies and entities tasked with defending against and  responding to cyber attacks. He and his staff will shape and coordinate budgets, ensure that federal cybersecurity operators are at least as good as their private counterparts, watch for emerging vulnerabilities in digital supply chains, and more.

Another major task for Inglis will be ensuring the federal government takes a consistent approach to helping critical infrastructure operators.

Inglis is still setting up his new office, which lacks permanent funding and is instead drawing from a White House contingency budget. He said he’s spoken to “dozens” of potential staffers and that many of them are in the process of joining his team, which Congress envisioned eventually growing to 75 people. “If we were to say that there are 16 critical infrastructures ... and if we were then to further imply that everything inside of every one of those 16 critical infrastructures should be defended with equal fealties, we find ourselves pretty quickly exhausted,” the director concluded. 

The Whitehouse:   DefenseOne:     AFCEA:      Politico:       Cyberscoop:   Meritalk:   

You Might Also Read: 

US Cyber Security Chiefs Support Mandatory Incident Reporting:

 

« British Manufacturing Severely Affected By Cyber Attacks
REvil Ransomware Gang Leader Identified »

CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

Resecurity, Inc.

Resecurity, Inc.

Resecurity is a cybersecurity company that delivers a unified platform for endpoint protection, risk management, and cyber threat intelligence.

ZenGRC

ZenGRC

ZenGRC - the first, easy-to-use, enterprise-grade information security solution for compliance and risk management - offers businesses efficient control tracking, testing, and enforcement.

LockLizard

LockLizard

Locklizard provides PDF DRM software that protects PDF documents from unauthorized access and misuse. Share and sell documents securely - prevent document leakage, sharing and piracy.

Jooble

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

Practice Labs

Practice Labs

Practice Labs is an IT competency hub, where live-lab environments give access to real equipment for hands-on practice of essential cybersecurity skills.

CyberArk Software

CyberArk Software

CyberArk is an established leader in privileged access management and offers the most complete set of Identity Security capabilities.

Cavirin

Cavirin

Cavirin’s Automated Risk Analysis Platform reduces risk and automates security and compliance.

CodeOne

CodeOne

CodeOne provides solutions for website and web app security.

Quaynote Communications

Quaynote Communications

Quaynote Communications is a specialist conference and communications company focused primarily on the maritime, yachting, aviation and security industries.

Luxembourg Office of Accreditation & Surveillance (OLAS)

Luxembourg Office of Accreditation & Surveillance (OLAS)

OLAS is the national accreditation body for Luxembourg. The directory of members provides details of organisations offering certification services for ISO 27001.

Cyber Security Academy (CSA)

Cyber Security Academy (CSA)

The CSA aims to educate professionals who wish to contribute to strengthening the digital defensibility of states, organisations and individual citizens.

Innovasec

Innovasec

Innovasec provide information security consulting and training services.

Apozy

Apozy

Apozy replaces a secure web gateway to nullify phishing, malware and impersonation attacks.

Innosphere Ventures

Innosphere Ventures

Innosphere Ventures is Colorado’s leading science and technology incubator, accelerating the success of high-impact startup and scaleup companies.

Haven Group

Haven Group

Haven Group and its companies are a cyber security one-stop-shop for our clients offering a full range of cyber security services to our clients in a unified and united way.

SurePassID

SurePassID

SurePassID is a provider of highly secure, highly extensible multi-factor authentication (MFA) solutions.

Cyber Security Authority (CSA) - Ghana

Cyber Security Authority (CSA) - Ghana

The Cyber Security Authority has been established to regulate cybersecurity activities in Ghana.

Aikido Technology Services

Aikido Technology Services

Aikido Technology Services is a leading-edge technology solutions provider, servicing the Pacific North West USA. We offer affordable IT solutions designed to streamline and secure your business.

ATSG

ATSG

ATSG is a global leader in transformational technology solutions for today’s digital enterprise. Cybersecurity ranging from Advisory & Assessment to Fully Managed Detection and Response Services.

Telesign

Telesign

Telesign connect, protect, and defend online experiences with sophisticated digital identity and programmable communications solutions.

Doherty Associates

Doherty Associates

Drawing on our deep industry knowledge and business insight, Doherty deliver intelligent IT solutions and services that help people work more securely, more productively and more creatively.