A bipartisan cyber policy roadmap for the next presidential administration recommends expanding the Office of the National Cyber Director to strengthen government coordination on pressing cybersecurity threats.
The report, released last week by Auburn University’s McCrary Institute, includes a comprehensive set of cyber policy recommendations for the next presidential administration. They were developed by 40 former officials from both Democratic and Republican administrations.
“I may be a Pollian, but I’m optimistic that no matter what direction the country goes, this issue will continue to go the same way,” McCrary Institute Director Frank Silphy said in an interview. .
“We really took a step back and thought about what’s working and what’s not working and where we need to go from here and where we need to redouble our efforts. ” he added.
The group made dozens of recommendations across eight “key themes,” ranging from harmonized cyber regulations to workforce development.
But when it comes to conspiracies within the federal government, the report calls for collaboration between governments to “break down silos, enhance information sharing, and create mechanisms for rapid and coordinated responses to cyber threats.” is focused on strengthening.
The key to this is the Office of the National Cyber Director, which has just been established within the presidential palace. Established by law in 2021, ONCD advises the President on cybersecurity policy and strategy.
The task force determined that ONCD’s role is “critically important,” but that “ONCD requires enhanced powers and resources to effectively carry out its mandate.”
The report establishes the office as the “principal coordinator for cyber incident response” to help coordinate the efforts of the National Security Agency, Department of Defense, Cybersecurity and Infrastructure Security Agency, FBI, and sector risk management agencies. We recommend doing so (SRMA).
“The reason we need the NCD is because cyber issues span so many different departments and agencies that we need White House capabilities to really bring them together,” said Michael, a task force member and former cyber coordinator.・Mr. Daniel stated. The Obama administration’s National Security Council said in an interview.
The task force suggested that the incoming administration “grant ONCD additional authority to advance interagency coordination, including the ability to influence funding for agency-wide cybersecurity initiatives.” There is.
“Conduct an ONCD-led integrated portfolio review to assess and coordinate cybersecurity investments across the federal government and ensure the involvement of the Office of Management and Budget,” the report continues. “Creating a formal mechanism for ONCD to engage and coordinate SRMA efforts and foster a more consistent approach to sector-specific cybersecurity challenges.”
Daniel said ONCD’s role should span cybersecurity issues, including resources, authorities, workforce and strategy. The task force also recommends that ONCD lead a “whole-of-government” effort to harmonize cyber regulations within the first 100 days of the new administration.
“We need to make sure that that office is functional and able to do what I think is its organizational, training and equipping role,” Daniel said. “NCD’s role is to enable the federal government to carry out its cyber missions.”
Role of SRMA
However, this report does not focus solely on the role of ONCD. It also recommends that the next administration strengthen the SRMA agency, which oversees different critical infrastructure sectors.
“Establish clear lines of responsibility within the SRMA and ensure that those with decision-making authority also have the ability to influence the allocation of resources and implementation of cybersecurity measures,” the report recommends. There is. “Developing clear indicators and performance indicators to assess the effectiveness of SRMA in improving the cybersecurity posture of departments.”
The task force also suggests that the Biden administration missed an opportunity in National Security Memorandum 22 to modify how the agency approaches critical infrastructure and potentially add new areas, such as space. .
“NSM-22 likely retained an outdated sector structure and missed an opportunity to better harmonize with its NATO allies,” the report states. “Understanding the cyber risk environment requires a new assessment of sector structure based on a defined and transparent set of criteria.
Strengthening CISA
The report also recommends strengthening CISA. The Cyber Agency coordinates cybersecurity operations across civilian agencies. It also functions as the “national coordinator” for critical infrastructure.
CISA has grown in both authority and resources through the Biden administration. However, the task force has “the authority to compel other federal agencies to act, the ability to streamline and/or consolidate the federal government’s involvement in the private sector, and the ability to engage effectively given long-standing resource limitations.” “Challenges remain in the federal government’s own ability to do so.” private sector. ”
Strengthening CISA includes “CISA operational systems and
According to the task force, to strengthen “managed services provided to federal agencies” and “ensure they have the authority, resources, and staffing necessary for their missions while avoiding duplication with other agencies.” , the agency’s roles and responsibilities will be clarified.
Daniel said CISA should play a stronger role in managing cybersecurity across federal civilian agencies, just as the General Services Administration supplies products and technology throughout the federal government.
“Part of the deal for the agency is, ‘Hey, take out anything you don’t like, because we’re dealing with a lot of cyber stuff,'” Daniel said. “Instead, instead of worrying about backbone IT or cybersecurity issues, we can focus our time and effort on the apps that matter to our agencies, what matters to our employees, and what actually helps them better accomplish their missions.” ” That will always be a secondary issue for you. ”
Copyright © 2024 Federal News Network. Unauthorized reproduction is prohibited. This website is not directed to users within the European Economic Area.
