This article is more than 1 year old

Security shield slingers are loving Prez Trump's cybersecurity order

Meanwhile, Fed heads have their work cut out for them

Ch-ch-ch-ch-changes

Amit Yoran, chief exec of Tenable Network Security, headquartered in Maryland, commented: "It's clear that the US needs a fundamental change in the way we approach cyber. President Trump's executive order on cybersecurity is an important step toward addressing the biggest cybersecurity challenges.

"America currently spends over $80 billion per year on federal IT, but money alone won't improve cybersecurity. Change can only happen if security is prioritized at the highest levels of government. This new executive order has the potential to force federal agencies to rethink their security strategies and to address today's elastic attack surface," he added.

Modernization of IT systems in government represents a key opportunity and challenge, according to Yoran.

"As agencies embrace modern IT, including shared cloud services and internet-enabled devices, it is important to understand the changes in the attack surface and embrace new opportunities to enhance security ... The executive order's prioritization of assessing and mitigating known vulnerabilities is a good step forward."

Brian Laing, senior vice president at Lastline, headquartered in Redwood City, California, said: "A key to success, nationally or within an enterprise, is executive buy-in. This order is a much-needed executive step that will focus efforts and increase resources deployed against improving our nation's cybersecurity."

The order makes no provision for any new spending on cybersecurity, focusing instead on (relatively inexpensive) assessments and plans.

"Overall, it appears the order implements important first steps," said Leo Taddeo, CISO of Cyxtera Technologies, headquartered in Florida. "It highlights the cybersecurity issue, puts agency heads on notice that they are accountable, and directs them to assess the risk and develop plans to mitigate them. This is a solid approach.

"The question is whether agencies will be able to execute the plans within reasonable spending constraints. The best hope in the order is the emphasis on shared services as a means to increase cybersecurity and reduce spending," Taddeo concluded. ®

More about

TIP US OFF

Send us news


Other stories you might like