The White House has released an implementation plan for the US National Cybersecurity Strategy, which will be introduced in March 2023.
The National Cybersecurity Strategy Implementation Plan (NCSIP), published July 13, 2023, aims to ensure transparency and coordination among U.S. federal agencies in realizing the vision set out in the strategy . This vision aims to fundamentally change the way the United States allocates roles, responsibilities and resources in cyberspace, and to increase incentives for long-term investments in cybersecurity.
The NCSIP details more than 65 “high-impact” federal efforts to achieve the objectives of the National Cybersecurity Strategy, each assigned to a responsible agency and with a timeline for completion. I’m here. These include tasks such as proposing new laws and modernizing technology systems.
This effort is based on five pillars:
- Defense of critical infrastructure: This includes the Cybersecurity and Infrastructure Security Agency (CISA) leading the process of updating the National Cyber Incident Response Plan to enable coordinated government action in the event of a cyber incident.
- Disruption and Dismantling of Threat Actors: As part of this pillar effort, the FBI is expected to enhance the capabilities of the National Cyber Investigative Joint Task Force (NCIJTF) to coordinate takedown and subversive activities with greater speed, scale and frequency.
- Shaping market forces to drive security and resilience: A key element here is CISA working with stakeholders to drive a software bill of materials (SBOM) to reduce gaps in scale and implementation.
- Investing in a resilient future: This includes the National Institute of Standards and Technology (NIST) completing the standardization of one or more quantum-safe public-key cryptographic algorithms.
- Building international partnerships to pursue common goals: One of the efforts under this pillar is for the Department of State to publish an International Cyberspace and Digital Policy Strategy that incorporates bilateral and multilateral activities.
The Biden-Harris administration added that this is the first iteration of the implementation plan and that it is “a living document that is updated annually.”
The Office of the National Cyber Director (ONCD) will be responsible for coordinating activities under this plan and will submit an annual report to the President and Congress on the status of implementation.
“The administration looks forward to continuing to work with the private sector, civil society, international partners, Congress, state, local, tribal and territorial governments to implement this plan,” the White House said in a statement. bottom.
Earlier this week, Microsoft said it had uncovered a Chinese cyber espionage operation that compromised at least 25 organizations, including the US government.
