As the cybersecurity landscape continues to evolve, federal agencies are struggling to keep pace. “Every
day, our adversaries are using known vulnerabilities to target federal agencies,” CISA Director Jen
Easterly said in a 2021 report. To meet the increasing number of threats, these agencies need to ramp
up their cybersecurity technology adoption and best practices.

 

Unfortunately, many organizations have been slow to adopt new measures, and some are still using
outdated technologies and procedures. This leaves them vulnerable to a variety of cyber-attacks that
could potentially cause serious damage. “In the past year alone, investigators discovered large-scale
hacking campaigns from both China and Russia, both of which broke into and stole information from
multiple agencies,” the report states.

 

This article identifies the risks and responsibilities of government agencies as they work to protect
sensitive government information. It shares details of opportunities to improve their cybersecurity
methods and regulations, and to exact positive change in their cybersecurity posture for the future.

 

A History of Cybersecurity within U.S. Federal Agencies

 

The U.S. government has a long history of cybersecurity efforts dating back to the Cold War. In response
to the more recent and growing threats of cyber-attacks, Congress passed the Federal Information
Security Management Act (FISMA) in 2002. This law established minimum cybersecurity standards for
federal agencies and required them to periodically report on their compliance with these standards.

 

Despite these measures, federal agencies continue to struggle with cybersecurity. In recent years, there
have been several high-profile breaches, including the U.S. Office of Personnel Management (OPM)
breach in 2015 and the Equifax breach in 2017. These incidents exposed the personal information of
millions of people and caused significant damage to the reputations of these organizations.

 

Why Do Cyber Criminals Target the U.S. Public Sector?

 

U.S. public sector organizations are attractive targets for cyber criminals. U.S. federal agencies hold a
large amount of sensitive data, including personal information and confidential government records.
They are especially appealing targets for well-funded state-sponsored cybercriminals. These attackers
are financed by oppositional governments; terrorist organizations; and other, similar groups often
motivated by politics or ideologies that are antagonistic to the United States and its allies.

 

Several conditions unique to public sector organizations also make them desirable targets when
compared to private sector organizations with similar caches of sensitive data. For example:

 

• .Legacy Systems. One of the most significant challenges U.S. federal agency and other public
  sector organizations face is the vast number of legacy systems and applications that are in use.
  Many of these systems were not designed with cybersecurity in mind and are therefore more
  vulnerable to attack.

 

• Talent Shortages. Too often, federal agency cybersecurity teams are understaffed and
  overworked, which leaves them with less time to devote to cybersecurity. Budgetary and hiring
  problems make it difficult to attract and retain top cybersecurity talent. Cyber criminals may see
  opportunities in these shortcomings..

 

 

•  Lack of Uniformity. The federal government is a large and complex organization, which makes it
  difficult to implement cybersecurity initiatives across all agencies. Some agencies may be more
  dedicated to cybersecurity protection and accountability than others, complicating governance.

 

 

Public sector organizations share these and other challenges with many of their private sector
counterparts. However, bureaucracies and other unique aspects of the public sector may impact these
organizations’ abilities to transition to a more modern cybersecurity posture in a timely way.

 

Public Sector Attacks Growing More Common

 

Now, federal agencies face a variety of cyber-attacks because of these circumstances and shortcomings.
Most often these include familiar, well-publicized attack vectors, such as:

 

 

• Phishing attacks. Criminals send false emails or other communications to trick people into
  revealing their personal information. For example, the recent spear-phishing campaign that
  targeted the U.S. Department of State “leveraged an account hosted by a third-party email
  service to send malicious emails to approximately 350 organizations, including federal agencies
  and NGOs,” CISA reported in May 2021.

 

• Malware infections. Criminals use malicious software to gain access to a computer or network.
  For example, in July 2021, Iranians posing as “recruiters, journalists, and NGO affiliates” used
  malware-infected files to target U.S. military personnel, CSIS reports.

 

• Denial-of-service (DDoS) attacks. Criminals flood a website or server with traffic to make it
  inaccessible.

 

 

To improve their cybersecurity posture, federal agencies need to adopt best practices that are aligned
with the current threat landscape. This includes investing in modern technologies and security solutions,
as well as increasing their focus on cybersecurity awareness and training. By doing so, they can better
protect themselves against the ever-evolving threats that they face.

 

Critical Cybersecurity Initiatives for the U.S. Public Sector

 

 

There are several cybersecurity initiatives underway within the U.S. federal government. That includes
the historic formation of the Cybersecurity and Infrastructure Security Agency (CISA), which was created
in response to the Russian hacking of state election systems in 2016. CISA protects critical infrastructure
from cyber-attacks and works to improve both awareness and training across the federal government.

 

Other important initiatives include the Federal Cybersecurity Research and Development Strategic Plan,
which is working to develop new technologies and solutions to improve cybersecurity, and CISA’s
Continuous Diagnostics and Mitigation (CDM) program, which is working to better identify and mitigate
cybersecurity risks. Collectively, these initiatives seek to improve the U.S. Federal Government's
cybersecurity posture across agencies for the long term. Methods by which that can be accomplished
include:

 

• Investing in modern cybersecurity technologies and solutions. This includes next-generation
  firewalls, advanced intrusion detection and prevention systems, and data loss prevention
  solutions.

 

• Increasing cybersecurity awareness and training—one of the best ways to improve
  cybersecurity. This can be done through cybersecurity awareness campaigns, regular training
  sessions, and the use of simulations to test employees' knowledge and response to
  cybersecurity threats.

 

 

• Implementing new cybersecurity best practices. U.S. Federal agencies should implement these
  across all departments and levels of government. This includes creating a cybersecurity policy,
  implementing strong authentication and authorization controls, and establishing incident
  response plans.

 

• Developing new cybersecurity technologies and solutions unique to their organizations.
  Keeping ahead of cybersecurity threats involves U.S. Federal agencies investing in research and
  development efforts to develop new cybersecurity technologies and solutions that are unique to
  each of their organizations needs.

 

• Implementing better cybersecurity risk management practices. This includes identifying and
  assessing cybersecurity risks, implementing controls to mitigate those risks, and continuously
  monitoring and responding to changes in the cybersecurity landscape.

 

With these methods, U.S. Federal agencies and other public sector organizations can better protect
themselves against cyber threats; they can ensure the security of their critical systems and data.

 

Staying Ahead of Future Cyber Threats

 

As the threat landscape continues to evolve, public sector organizations must become more proactive in
their efforts to anticipate and prevent breaches. Cybersecurity tools that incorporate new
breakthroughs in AI will be essential as bad actors use AI-based weapons in their own attacks. Now that
cybersecurity is a top priority among agencies’ senior leadership, there has never been a better
opportunity to transform and improve.

 

Partner with Uvation as You Begin Your Cybersecurity Transformation

 

If you are interested in identifying and launching successful cybersecurity methodologies at your own
organization, Uvation can help. Contact one of our cybersecurity experts for a free consultation today.