DHS Releases Cybersecurity Strategy
Wednesday, May 16, 2018 | Comments

The U.S. Department of Homeland Security (DHS) released a strategy outlining its approach to identifying and managing national cybersecurity risk. The DHS strategy details a department-wide approach to address the evolving threats to our nation’s cyber and critical infrastructure security.

Directed by the National Defense Authorization Act of 2017, the strategy addresses strategic and operational goals and priorities to execute the full range of the DHS Secretary’s cybersecurity responsibilities. The intent is to enable the harmonization and prioritization of DHS planning, programming, budgeting and operational activities across all DHS cybersecurity mission areas. It will focus on coordinating departmental cybersecurity activities to ensure a unity of effort.

“The cyber threat landscape is shifting in real time, and we have reached a historic turning point,” said DHS Secretary Kirstjen Nielsen. “Digital security is now converging with personal and physical security, and it is clear that our cyber adversaries can now threaten the very fabric of our republic itself. That is why DHS is rethinking its approach by adopting a more comprehensive cybersecurity strategy. Our strategy outlines how DHS will leverage its unique capabilities on the digital battlefield to defend American networks and get ahead of emerging cyber threats.”

The five-part approach manages national cyber risks aimed at ensuring the availability of critical national functions and fostering efficiency, innovation, trustworthy communications and economic prosperity in ways consistent with national values and that protect privacy and civil liberties. The five parts are:
1. Risk Identification: Assess the evolving national cybersecurity risk posture to inform and prioritize risk management activities.
2. Vulnerability Reduction: Protect federal government information systems by reducing the vulnerabilities of federal agencies to ensure they achieve an adequate level of cybersecurity.
3. Threat Reduction: Reduce national cyber threats by countering transnational criminal organizations and sophisticated cyber criminals.
4. Consequence Mitigation: Respond effectively to cyber incidents to thereby minimize consequences from potentially significant cyber incidents through coordinated community-wide response efforts.
5. Enable Cybersecurity Outcomes: Strengthen the security and reliability of the cyber ecosystem by supporting policies and activities that enable improved global cybersecurity risk management and execute departmental cybersecurity efforts in an integrated and prioritized way.

A core guiding principle underlying the DHS strategy approach is collaboration across the cybersecurity community, including with partners in the federal government, state and local governments, industry and the international community.

The full plan is available here.

Would you like to comment on this story? Find our comments system below.

Post a comment
Name: *
Email: *
Title: *
Comment: *


No Comments Submitted Yet

Be the first by using the form above to submit a comment!

Site Navigation