Strong customer demand drove Caterpillar higher profits, although supply chain problems drove sales somewhat – Copyright AFP / File ANDER GILLENEA

Due to the attacks on SolarWinds, the Colonial Pipeline and Kaseya, 2021 can be seen as a year of “cyber turbulence”. Is that what we can expect in the coming year? For many in the industry, this is a reasonable question.

Digital journal reached out to the experts at Telos to identify three worrying industry trends.

Critical Infrastructure

According to Rick Tracy, CSO, Telos Corporation, concerns a key concern to critical infrastructure. To prevent this from happening, special attention must be paid to each cybersecurity vulnerability.

This leads Tracy to state: “Without mandates to implement even basic security measures, critical infrastructures will remain an easy target for cybercriminals in 2022.”

To demonstrate this, Tracy quotes: “There have been recent warnings that water and sewer systems are a high priority. All sectors of critical infrastructure harbor clear security risks for our country. Voluntary cyber risk management doesn’t help. There must be incentives or penalties to encourage critical infrastructure organizations to take appropriate steps to manage cyber risks. “

Supply chain wobbles

Another area where intentional interference occurs is is with the supply chain. The vulnerabilities here were identified by Ryan Sydlik, Safety Engineer, Telos Corporation.

According to Sydlik: “COVID-19 and its consequences in particular are affecting supply chains as the recovery from the virus is uneven around the world, leading to an unbalanced supply and demand between nations.”

This difficult situation leads Sydlik to the statement: “Expect cyber attacks on the supply chain to take an already secured situation and worsen it in already stressed supply chains. In addition to large companies involved in world trade, small and medium-sized players in the supply chain will be targeted in 2022 as opponents realize that these companies are the most vulnerable bottlenecks that also have less robust security. A targeted failure at the right place and at the right time could mess up entire industries. “

Slow cyber progress in the US

While countries need robust cybersecurity laws, it is unlikely in the US, according to Robert DuPree, Manager of Government Affairs, Telos Corporation.

DuPree says the White House is interested, but Congress hesitates: “Expect this Biden administration continues to stress the need for additional action in 2022 to address cybersecurity vulnerabilities in the public and private sectors. “

Outside the government sector, however, things are more difficult, as DuPree notes: “With regard to the private sector, such efforts will have to be made primarily through executive directives, as Congress will again be reluctant to mandate the private sector to mandate violations. Congress will continue to allocate some additional funding to improve cybersecurity at key federal agencies, although that will likely not be enough to meet the growing challenges. Finally, expect some legislative changes to FISMA and FITARA as well as efforts to codify FedRAMP (if they don’t happen before the end of 2021). “

Source link
#Navigate #Cyber #Turbulence #Digital #Journal

Leave a Reply