Public sector cybersecurity: under threat but fighting back

The Guardian

People’s reliance on the internet in their everyday lives is such that good cybersecurity is not only about what individuals and organisations do to protect themselves, but what governments must do to ensure that national critical infrastructure is well protected.

In the US, federal government is trying to protect local authorities through a voluntary but heavily encouraged set of cybersecurity standards, developed in part by non-regulatory agency the National Institute of Standards and Technology, (NIST). The standards have been widely adopted.

“Adoption and support for these standards is a start but like most compliance-driven security programs, it is often written and implemented with such lag, that it does not properly stay in sync with real-time attacks and techniques,” says Paul Calatayud, chief technology officer at IT security firm FireMon.