Improving Detection Of Cybersecurity Vulnerabilities And Incidents

1. The aim of the new executive order is to minimise future threats to national security and align cybersecurity initiatives across America learn more here Partners Community Resources Products Blog Events Partner deal registrations

2. RiskXchange provides compliance with Biden’s Executive Order with a specific focus on the private sector.  President Joe Biden has set in motion a new Executive Order to improve the United States’ security posture. The new order encourages better cyber threat information sharing between the U.S Government and the private sector. The aim is to minimise future threats to national security and align cybersecurity initiatives by modernisingcybersecuritydefences across America.  The official White House publication states that the United States faces persistent and increasingly sophisticated malicious cyber campaigns that threaten the public sector, the private sector, and ultimately the American people’s security and privacy. The Federal Government states that it must improve its efforts to identify, deter, protect against, detect, and respond to these actions and actors. These threats are not only focused on America, however but can be seen right around the world.   Partners Community Resources Products Blog Events Partner deal registrations

3. Removing barriers to sharing threat information The new Executive Order affects all Operational Technology (OT), Information Technology (IT) and cloud providers offering services to the United States government.   In section 2 of the Executive Order, it stipulates that IT Service Providers and cloud providers must share data breach information with government agencies and departments tasked with investigating cyberattacks.  These government departments and agencies include:  The Federal Bureau of Investigation (FBI).  The Cybersecurity and Infrastructure Security Agency (CISA).  Sectors of the United States Intelligence Community (IC).  Prior to the Executive Order being instituted, IT providers were under no obligation to share cyber incident information with the above-mentioned entities. Now all IT service providers in the United States are obligated to share specific data breach information between the private sector and the U.S. government. With the new information, the United States government can adjust its cyber defences in line with evolving nation-state attacks to accelerate its response and remediation efforts. 

4. Improving detection of cybersecurity vulnerabilities and incidents on Federal Government networks In section 7, the Executive Order outlines that the Federal Government shall employ all appropriate resources and authorities to maximise the early detection of cybersecurity vulnerabilities and incidents on its networks. This approach shall include increasing the Federal Government’s visibility into and detection of cybersecurity vulnerabilities and threats to agency networks in order to bolster the Federal Government’s cybersecurity efforts.  FCEB Agencies shall deploy an Endpoint Detection and Response (EDR) initiative to support proactive detection of cybersecurity incidents within Federal Government infrastructure, active cyber hunting, containment and remediation, and incident response. 

5. 168-172 Old Street, London, UK EC1V 9BP E-mail: support@riskxchange.co RiskXchange is a leader in cybersecurity ratings management We support over 100,000 organisations when it comes to enterprise and third party risk management.