DHS Cybersecurity Strategy

DHS Cybersecurity Strategy

The U.S. Department of Homeland Security (DHS) released its Cybersecurity Strategy on May 15, 2018. The Cybersecurity Strategy provides a framework, which outlines the way in which the DHS will identify and manage national cybersecurity risks as the cyber threat landscape continues to evolve. This strategy guides the department’s approach to managing the cyber risks posed by significant growth in Internet access and connectivity of devices, as well as the transition of malicious activities into the digital world and delivery of critical services through cyberspace. As outlined by the strategy, five pillars have been identified by DHS under which a set of seven goals have been established in relation to the assessment, reduction, and prevention of cyber vulnerabilities and threats faced by U.S. government networks and critical infrastructure.

DHS Cybersecurity Pillars and Goals

Pillar 1 – Strengthening of Risk Identification

It is essential for DHS to determine how the nation stands regarding the cybersecurity risks it faces. DHS must understand patterns of change in threats, vulnerabilities, and consequences faced by the nation in order for the department to appropriately distribute resources and prioritize activities for the purpose of managing cybersecurity risks. In order to accomplish the goal of assessing evolving cybersecurity risks, DHS must collaborate with stakeholders such as sector-specific agencies, federal entities, and cybersecurity firms outside of the federal government.

Pillar 2 - Reduction of Vulnerabilities

DHS will work to reduce the vulnerabilities of information systems used by federal government agencies in order for such agencies to achieve a higher level of cybersecurity. DHS must support the continuous improvement of federal information technology governance structures, government-wide information security policies, and oversight of federal enterprise cybersecurity. DHS must also provide federal agencies with capabilities, tools, and services to facilitate the identification and mitigation of cybersecurity threats and vulnerabilities. In addition, it is important for DHS to utilize advanced cybersecurity approaches and technologies to protect information systems within its own department.

In addition to reducing the vulnerabilities contained by federal government information systems, DHS will also improve upon the protection of critical infrastructure. As cyberattacks on critical infrastructure pose a significant threat to national security, economic security, along with the health and safety of the public, it is crucial for DHS to collaborate with specific agencies and the private sector to strengthen the cybersecurity of critical infrastructure sectors. In order to ensure that cybersecurity risks faced by critical infrastructure are adequately managed, DHS must promote the development and adoption of protective tools and services, as well as engage stakeholders in the evaluation of risks to critical infrastructure and gaps in national risk management efforts. The practice of sharing information pertaining to cyber threat indicators, vulnerabilities, and defensive measures among stakeholders must also be expanded and improved. Cybersecurity knowledge, capabilities, and resources must always remain up-to-date and available to sector-specific agencies, regulators, and policymakers.

Pillar 3 - Reduction of Threats

DHS will reduce cyber threats by working with other law enforcement agencies to hinder and disturb the performance of malicious criminal activities in cyberspace. The reduction of cyber threats calls for the collaboration between DHS and other law enforcement agencies to conduct in-depth cyber investigations to defeat cyber criminals and transnational criminal organizations that pose the greatest threats to the Nation. DHS must utilize its capabilities to ensure the security of protected persons, special security events, and critical infrastructure against cyber threats. In addition, DHS must support the advancement of capabilities and resources that bolster the investigation of cyber threats and tackles evolving law enforcement challenges posed by cyberspace.

Pillar 4 - Mitigation of Consequences

DHS will minimize the impact of potentially large-scale cyber incidents through the improvement of coordination and cooperation between DHS, other federal agencies, and non-DHS law enforcement agencies in responding to such incidents. Entities that are likely to face major cyber incidents must be encouraged by DHS to report incidents and share security information. DHS must work closely with other incident responders to establish best practices for notifying victims. Technical asset response capabilities must also be improved by DHS.

Pillar 5 - Enabling of Cybersecurity Outcomes

DHS will allow the outcome of improved global cybersecurity risk management by advocating for the application of policies and activities that would bolster the security and reliability of the cyber ecosystem. DHS must support the building of highly resilient networks and implementation of security during the development of software, hardware, and services. The advancement of cybersecurity objectives such as incident response and information sharing should also continue to be supported by DHS research and development efforts. In addition to DHS research and developments, international cybersecurity partnerships must also be in support of the department’s mission objectives towards further securing the cyber ecosystem. It is also essential for DHS to continue its support for the development of a highly-skilled cyber workforce through cyber education and training programs.

In addition to advocating for policies and activities that foster the enhancement of cybersecurity risk management, DHS must also work on improving the management of cybersecurity activities performed by the department. This improvement will derive from the integration of department-wide procedures, policies, and strategic plans, as well as the assessment of DHS cybersecurity programs and activities to determine if they meet the goals and objectives of the department’s cybersecurity strategy.

Strategy to Improve National Cybersecurity Risk Management

The DHS Cybersecurity Strategy highlights the department’s goals and objectives toward improving the management of national cybersecurity risks in order to protect federal government information systems, critical infrastructure, and ultimately the well-being of the American people. Enhancing national cybersecurity risk management requires increased collaboration between the department, key partners, and stakeholders, as well as innovative technology and a unified department-wide approach.