Click Here 127. Mic Drop: NSC’s Neuberger on mitigating cyber attacks: ‘We should be using an operational approach’
May 3, 2024
The White House's top cyber official discusses setting minimum cybersecurity standards for industry and involving ordinary people to make products secure. Topics include blending cybersecurity with physical security, regulating big tech, and implementing a global certification program for cybersecurity products.
AI Snips
Chapters
Transcript
Episode notes
Mitigate Damage From Attacks
- Protecting critical infrastructure means more than preventing attacks; it requires planning to mitigate damage when breaches occur.
- The goal is for systems like hospitals or pipelines to recover quickly, minimizing disruption impact.
Mandate Minimum Cyber Standards
- Require private sector critical infrastructure operators to follow minimum cybersecurity standards.
- These standards should ensure networks controlling physical systems are isolated from corporate networks to prevent cascading attacks.
Limit Damage Beyond Technical Breach
- Cyber adversaries only need one successful breach, so defense must include damage limitation.
- Panic and public perception can worsen the impact beyond the technical incident itself.