New Department of Homeland Security cybersecurity strategy launched
- Published: Friday, 18 May 2018 08:30
On May 15th, the US Department of Homeland Security (DHS) released a strategy outlining the Department’s approach to identifying and managing national cybersecurity risk. The DHS strategy details a Department-wide approach to address the evolving threats to US cyber and critical infrastructure security.
Directed by the National Defense Authorization Act of 2017, the new strategy addresses strategic and operational goals and priorities to successfully execute the full range of the DHS Secretary’s cybersecurity responsibilities.
The new cybersecurity strategy sets out a five-part approach to manage national cyber risk aimed at ensuring the availability of critical national functions:
- Risk identification: assess the evolving national cybersecurity risk posture to inform and prioritize risk management activities.
- Vulnerability reduction: protect federal government information systems by reducing the vulnerabilities of federal agencies to ensure they achieve an adequate level of cybersecurity.
- Threat reduction: reduce national cyber threats by countering transnational criminal organizations and sophisticated cyber criminals.
- Consequence mitigation: respond effectively to cyber incidents to thereby minimize consequences from potentially significant cyber incidents through coordinated community-wide response efforts.
- Enable cybersecurity outcomes: strengthen the security and reliability of the cyber ecosystem by supporting policies and activities that enable improved global cybersecurity risk management and execute departmental cybersecurity efforts in an integrated and prioritized way.
“The cyber threat landscape is shifting in real-time, and we have reached a historic turning point,” said Secretary Nielsen. “Digital security is now converging with personal and physical security, and it is clear that our cyber adversaries can now threaten the very fabric of our republic itself. That is why DHS is rethinking its approach by adopting a more comprehensive cybersecurity strategy. In an age of brand-name breaches, we must think beyond the defense of specific assets—and confront systemic risks that affect everyone from tech giants to homeowners. Our strategy outlines how DHS will leverage its unique capabilities on the digital battlefield to defend American networks and get ahead of emerging cyber threats.”