The Biden administration released its first National Cybersecurity Strategy on Thursday, outlining a five-pillar approach to protecting the nation from cyberattacks. The announcement pushes for increased cybersecurity efforts across critical infrastructure, shifting security responsibility on software companies, expanding offensive cyber operations to protect and United States, and hiring efforts.
It is the first national cybersecurity strategy announcement of the Biden administration, and first since the 2018 National Cyber Strategy announcement by the Trump administration.
The five pillars are:
- Defend critical infrastructure. The strategy calls for the government to work with critical infrastructure owners and operators to improve their cybersecurity posture, including by developing minimum security standards and providing assistance with implementation.
- Disrupt and dismantle threat actors. The strategy calls for the government to use all elements of national power to disrupt and dismantle malicious hackers, ransomware gangs, and other threat actors. This includes using offensive cyber capabilities, working with allies to share intelligence, and applying law enforcement pressure.
- Shape market forces to drive security and resilience. The strategy calls for the government to work with the private sector to develop incentives for companies to invest in cybersecurity and to promote the development of secure technologies.
- Invest in a resilient future. The strategy calls for the government to invest in research and development to develop new cybersecurity technologies and to train a diverse and robust cyber workforce.
- Forge international partnerships. The strategy calls for the government to work with allies and partners to share intelligence, develop common standards, and coordinate response efforts.
The strategy also includes a number of specific initiatives, such as:
- Creating a new Office of Cyberspace and Emerging Technologies (CSET) within the White House. CSET will be responsible for coordinating the government’s cybersecurity efforts and for developing and implementing new cybersecurity policies.
- Launching a new Cybersecurity Strategy Implementation Plan. The plan will outline the specific steps that the government will take to implement the strategy, including developing new regulations, providing assistance to critical infrastructure owners and operators, and working with the private sector.
- Launching a new Cybersecurity National Action Plan. The plan will outline the specific steps that the government will take to address the immediate and long-term cybersecurity threats facing the nation.
“The president’s strategy fundamentally reimagines America’s cyber social contract,” Kemba Walden, acting national cyber director, told reporters during a press briefing.
The Biden administration’s national cybersecurity strategy is a comprehensive and ambitious document that outlines a comprehensive approach to protecting the nation from cyberattacks. The strategy includes a number of specific initiatives that will help to improve the nation’s cybersecurity posture and to protect the nation from future attacks.
The strategy is a positive step forward in the fight against cyberattacks, but it is important to note that it is just a first step. The strategy will need to be implemented effectively in order to be successful, and the government will need to continue to work with the private sector and with allies to develop new cybersecurity technologies and to train a diverse and robust cyber workforce.
