National Cyber Strategy

After lengthy negotiations and revisions, the White House has finally released its National Cybersecurity Strategy document, outlining it’s priorities and goals. It’s a wide-ranging and ambitious document consisting of five major areas of focus, or “pillars”. What’s new here? What will it mean for businesses and critical infrastructure? And what does this mean for you and I? Today I’ll cover all of that and more with Josh Corman from I Am the Cavalry and formerly with the US Cybersecurity and Infrastructure Security Agency (CISA).

Interview Notes

Further Info

Table of Contents

Use these timestamps to jump to a particular section of the show.

  • 0:01:55: Interview setup
  • 0:04:00: What is this strategy document, at a high level?
  • 0:14:02: What are some of the more important or novels aspects?
  • 0:18:05: Do agencies have the budget and authority to implement these strategies?
  • 0:22:11: Will having a gov’t backstop actually encourage attacks or discourage preparation?
  • 0:30:40: Should the gov’t actively scan US firms/orgs for vulnerabilities?
  • 0:36:56: What should we do about the marketplace for zero-day hacks?
  • 0:39:52: How aggressive should the US be against hackers?
  • 0:41:03: What is NOT addressed by this strategy?
  • 0:45:55: How should be manage our dependencies on foreign software and hardware?
  • 0:52:59: What can everyday people take away from these strategies?
  • 0:59:50: Has this document already had impacts? How do we monitor progress?
  • 1:03:56: Interview wrap-up
  • 1:07:40: Looking ahead