Three Ways to Help Improve the Nation’s Cybersecurity | SPONSORED
By now, you’ve heard about Executive Order 14028 on “Improving the Nation’s Cybersecurity” which President Biden signed in May, 2021. It begins by stating, “The United States faces persistent and increasingly sophisticated malicious cyber campaigns that threaten the public sector, the private sector, and ultimately the American people’s security and privacy. The Federal Government must improve its efforts to identify, deter, protect against, detect, and respond to these actions and actors.”
The experts at RunSafe Security have dissected the EO to break down the specific areas of improvement it’s addressing, how your enterprise may be affected, and what you can do to help ensure these improvements come to life within our nation’s cyber landscape.
How Can You Help Improve National Cybersecurity?
1. Modernize and implement stronger cybersecurity standards by enabling suppliers to insert security controls into critical software at build time (Section 4 (a)).
NIST 800.53 version 5 now states that RASP is a key control in protecting software. RunSafe Security enables your software development team to incorporate runtime protections into your software code at build time without slowing down. This approach protects software from both known and unknown vulnerabilities that scanning tools miss. All suppliers should incorporate this protection into their embedded software they ship to the U.S. Government, if not all customers across critical infrastructure. See Alkemist:Code for more information.
2. Improve software supply chain security by providing pre-hardened open source software packages with a complete software bill of materials – SBOM (Section 4 (e) vii).
North Carolina State University conducted a study that showed leading scanning tools failed to detect 97.5% of memory-based vulnerabilities in the Linux operating system over a ten-year period. RunSafe builds from source and hardens the most common open source packages (Apache, NGINX, MySQL, PostgreSQL, Reddis, Python [interpreter], Java [interpreter], and many more) from known and unknown vulnerabilities. Given the Executive Order, RunSafe is committed to incorporating a complete software bill of material as part of the package they deliver. See Alkemist:Repo for more information.
More about How to Protect Your Open Source Software
Learn from global ICS cybersecurity subject matter experts as they share insights on topics like Cybersecurity for Manufacturing, Energy and Infrastructure Industries and The Role of AI in ICS Cybersecurity at IIoT World’s Cybersecurity Day on October 6, 2021. The first 500 tickets are free, so register today.
May 2024 Industrial IoT & ICS Cybersecurity Events
Welcome to the May 2024 roundup of IIoT and ICS cybersecurity events. This month promises an array of conferences, summits, and expos dedicated to exploring the latest advancements, challenges, and best practices in securing critical infrastructure and advancing industrial connectivity.
Predictive Maintenance for Industrial IoT Devices at the Edge
Working at the edge In industrial operations, time is money. The more efficient processes and machinery are, the better it is for business. Providing proactive monitoring and maintenance of industrial machines, however, is not an easy task. This is especially true
Green at the Core: How Sustainability Is Becoming the New Competitive Edge in Business
Last week, at the Innovation Summit in Paris, I had the pleasure to interview Sophie Borgne, Water Segment President, Schneider Electric, and Georg Weber, Executive Board Member & CTO, Wilo Group. The conversation is focused on sustainability, marking a pivotal shift in