4 Signs the U.S Government Is Becoming More Aggressive With Cybersecurity
The NSA's new Cyber Directorate marks the latest in a line of government cyber initiatives in the last year, and when it comes to cybersecurity, redundancy is almost definitely a good thing.
July 31, 2019 at 11:30 AM
5 minute read
Is it possible for the government to be too aggressive when it comes to cybersecurity? Jarno Vanto, a partner in the privacy and cybersecurity group at Crowell & Moring, doesn't think that the U.S. is in danger of finding out any time soon.
“I think there's more that there's been a general sentiment that the government is doing too little right now. At least the media right now has been emphasizing that there's been too little effort to protect critical infrastructure,” he said.
Still, that doesn't mean the government isn't trying. Over the past year, multiple government agencies have stepped up their cybersecurity efforts.
While having the Department of Defense, FBI or the National Security Agency all involved with cybersecurity in some capacity might be construed as overkill, Vanto pointed out that cybersecurity threats span almost every level of society. Expecting any one group to be able to effectively monitor all of them might be a losing proposition—and besides, it's not like the various government players involved can't compare notes.
“Coordination is probably good in order to avoid duplicating efforts,” Vanto said.
Here are some of the more recent cybersecurity efforts that the government has launched within the last year.
|Talk is (Fortunately) Cheap
At least the Department of Defense (DoD) got the memo about sharing. Last September, the DoD released new updates to its Cyber Strategy that emphasized a renewed focus on enhancing collaboration with the private sector to protect from potential threats.
David Simon, a partner at Mayer Brown and a former special counsel at the DoD, told Legaltech News that this was a step in the right direction.
“With respect to public-private partnerships, the DoD can and should play an even greater role in providing or sharing indications and warnings of potential attacks on the private sector in the U.S.,” he said.
The DoD is doing more than just passing notes, though. The new Cyber Strategy also stressed that the department would be setting an expectation of ongoing cybersecurity due diligence for all of its private contractors, leveraging its considerable purchasing power as both carrot and stick.
|Who You Gonna Call?
Not to be outdone, the U.S. Department of Homeland Security began stepping up its game last August with the launch of a National Risk Management Center.
The move was geared towards both heightening collaboration with the private sector on cybersecurity and repositioning the department's security arm—the National Protection and Programs Directorate (NPPD)—into an operational agency capable of engaging digital threats.
By November 2018, the U.S. House of Representatives and the U.S. Senate had approved a bill transforming the NPPD into the Cybersecurity and Infrastructure Security Agency, a designated point of contact for both federal and non-federal cybersecurity stakeholders alike.
“The rise in geopolitical risk requires a forum for sharing actionable threat intelligence between public and private sectors. It is paramount for securing our critical infrastructure, as industry owns most critical information assets,” Bill Conner, president and CEO of the network security company SonicWall, told Legaltech News.
|Minding the Store
It's all well and good to have agencies, departments or teams focused on cybersecurity, but locating top tier talent has always presented some difficulty. Last May, President Donald Trump issued an executive order centered around America's cybersecurity workforce, which included measures to locate hidden gems within the government.
Among the particulars was a mandate for the Secretary of Homeland Security, Secretary of Defense and Director of the Office of Science and Technology Policy to develop an annual President's Cup Cybersecurity Challenge with an eye towards identifying and rewarding the government's best offensive and defensive cybersecurity practitioners.
The executive order dictates that the first competition be held sometime before December 31, 2019.
|New Kid on the Block
Starting October 1, 2019, the National Security Agency's national intelligence and cyber defense responsibilities will be unified into a new Cybersecurity Directorate concentrated on protecting the defense industrial base and national security systems.
According to information released by the NSA, the Cybersecurity Directorate will collaborate on that mission with other entities across the U.S. government, including U.S. Cyber Command, the FBI and the Department of Homeland Security.
Vanto believes that emphasizing those collaborative efforts is part of the point.
“It's kind of a signal that the NSA is more willing to now engage with a broader society in ways that are not just purely more of a darker tone. This is one of the ways that the NSA is trying to position themselves as doing good things,” he said.
This content has been archived. It is available through our partners, LexisNexis® and Bloomberg Law.
To view this content, please continue to their sites.
Not a Lexis Subscriber?
Subscribe Now
Not a Bloomberg Law Subscriber?
Subscribe Now
NOT FOR REPRINT
© 2024 ALM Global, LLC, All Rights Reserved. Request academic re-use from www.copyright.com. All other uses, submit a request to [email protected]. For more information visit Asset & Logo Licensing.
You Might Like
View AllTrending Stories
- 1Graffiti Showdown: Miami Clashes Over Demolition Site Cleanup Before New Year’s
- 2Phila. Jury Awards $15M to Woman Who Slipped on Apartment Building Stairs
- 3Appellate Division Greenlights State Bar's Leadership Diversity Initiatives
- 4SEC’s Latest Enforcement Actions Fuel Demand for Big Law
- 5Sterlington Brings On Former Office Leader From Ashurst
Who Got The Work
Michael G. Bongiorno, Andrew Scott Dulberg and Elizabeth E. Driscoll from Wilmer Cutler Pickering Hale and Dorr have stepped in to represent Symbotic Inc., an A.I.-enabled technology platform that focuses on increasing supply chain efficiency, and other defendants in a pending shareholder derivative lawsuit. The case, filed Oct. 2 in Massachusetts District Court by the Brown Law Firm on behalf of Stephen Austen, accuses certain officers and directors of misleading investors in regard to Symbotic's potential for margin growth by failing to disclose that the company was not equipped to timely deploy its systems or manage expenses through project delays. The case, assigned to U.S. District Judge Nathaniel M. Gorton, is 1:24-cv-12522, Austen v. Cohen et al.
Who Got The Work
Edmund Polubinski and Marie Killmond of Davis Polk & Wardwell have entered appearances for data platform software development company MongoDB and other defendants in a pending shareholder derivative lawsuit. The action, filed Oct. 7 in New York Southern District Court by the Brown Law Firm, accuses the company's directors and/or officers of falsely expressing confidence in the company’s restructuring of its sales incentive plan and downplaying the severity of decreases in its upfront commitments. The case is 1:24-cv-07594, Roy v. Ittycheria et al.
Who Got The Work
Amy O. Bruchs and Kurt F. Ellison of Michael Best & Friedrich have entered appearances for Epic Systems Corp. in a pending employment discrimination lawsuit. The suit was filed Sept. 7 in Wisconsin Western District Court by Levine Eisberner LLC and Siri & Glimstad on behalf of a project manager who claims that he was wrongfully terminated after applying for a religious exemption to the defendant's COVID-19 vaccine mandate. The case, assigned to U.S. Magistrate Judge Anita Marie Boor, is 3:24-cv-00630, Secker, Nathan v. Epic Systems Corporation.
Who Got The Work
David X. Sullivan, Thomas J. Finn and Gregory A. Hall from McCarter & English have entered appearances for Sunrun Installation Services in a pending civil rights lawsuit. The complaint was filed Sept. 4 in Connecticut District Court by attorney Robert M. Berke on behalf of former employee George Edward Steins, who was arrested and charged with employing an unregistered home improvement salesperson. The complaint alleges that had Sunrun informed the Connecticut Department of Consumer Protection that the plaintiff's employment had ended in 2017 and that he no longer held Sunrun's home improvement contractor license, he would not have been hit with charges, which were dismissed in May 2024. The case, assigned to U.S. District Judge Jeffrey A. Meyer, is 3:24-cv-01423, Steins v. Sunrun, Inc. et al.
Who Got The Work
Greenberg Traurig shareholder Joshua L. Raskin has entered an appearance for boohoo.com UK Ltd. in a pending patent infringement lawsuit. The suit, filed Sept. 3 in Texas Eastern District Court by Rozier Hardt McDonough on behalf of Alto Dynamics, asserts five patents related to an online shopping platform. The case, assigned to U.S. District Judge Rodney Gilstrap, is 2:24-cv-00719, Alto Dynamics, LLC v. boohoo.com UK Limited.
Featured Firms
Law Offices of Gary Martin Hays & Associates, P.C.
(470) 294-1674
Law Offices of Mark E. Salomone
(857) 444-6468
Smith & Hassler
(713) 739-1250