It is tough to create and execute a national cybersecurity plan.
FREMONT, CA: State-sponsored cyber warfare is one of the most critical concerns nations confront today in escalating geopolitical and geoeconomic conflicts. Hackers from state-sponsored hacks target essential infrastructures worldwide, including election interference, the suspected theft of COVID-19 vaccine research, and power disruptions for more than a quarter-million people.
A nation's essential infrastructure is now more vulnerable than ever before to cyberattacks from both state and non-state actors. Any attack on a country's critical infrastructure in one area could have a ripple effect on other sectors. An attack on the country's communications infrastructure, for example, may hinder electronic payments.
This, however, is only part of the problem. Every aspect of our lives has become increasingly dependent on internet connectivity. Most people can't imagine going more than a few hours without access to the internet. According to current estimates, some 127 new devices are joining the internet every second worldwide. Any loss of digital connectivity is seen as a setback in the advancement of technology.
The COVID-19 epidemic has led to a substantial increase in our reliance on digital technology. Remote labor has become an increasingly important aspect of our economies and healthcare systems, and this dependence on digital technology will only grow.
Cyberattacks are becoming increas
ingly common as more gadgets, people, and businesses become online. If a government cannot ensure reliable and secure digital connectivity, societies and economies will suffer. Owing to this, more than 100 countries have established national cybersecurity defense strategies to combat the threats to their citizens, businesses, and critical infrastructure from cyberattacks.
Dedicated national cybersecurity agency
Best-in-class countries entrust the nation's cybersecurity agenda to a single body, usually a national cybersecurity agency. Protecting key infrastructure, organizing reaction to incidents involving cyberspace, setting cybersecurity standards, raising public awareness, and improving professional security capabilities are part of this strategy's many components.
When establishing an NCA, nations can examine design options such as:
● Should the agency be housed within a defense and intelligence agency or a civilian organization?
● Which government level does the agency report to?
● To what extent do the agency control and oversight (does it focus solely on essential infrastructure or residents and small- and medium-sized businesses, for instance)?
The NCA must be equipped with the requisite technical knowledge and expertise to accomplish its responsibilities. Government or private sector organizations generally fill any gaps in NCA capabilities. Several government departments are working together to improve the capabilities of cybersecurity professionals.
Even within leading nations, approaches to these design decisions vary but often reflect a nation's political philosophy, federal government structure, maturity of cyber capabilities, and overall cybersecurity goals.
