Cyber Security Headlines Week in Review: Shutdown furloughs CISA, DoD risk framework, Oracle extortion problem
30 snips
Oct 3, 2025 This week, Steve Zalewski, a cybersecurity expert and co-host of Defense in Depth, dives into pivotal topics shaping the digital landscape. He discusses the implications of CISA's furloughs on incident response and long-term staffing risks. The shift of the DOD to a Continuous Cyber Risk Management framework is explored, emphasizing resiliency and AI in defense. Additionally, they analyze the recent Oracle data extortion, highlighting vendor responsibility, and touch on the impact of ransomware on Asahi's operations, posing serious questions about supply chain vulnerabilities.
AI Snips
Chapters
Transcript
Episode notes
Short-Term Resilience, Long-Term Risk
- Government shutdowns can severely reduce CISA's proactive capabilities while preserving a smaller emergency team.
- Steve Zalewski warns the short-term response may hold but prolonged furloughs risk burnout and talent loss.
Lean On ISACs And Partners
- Let ISACs and private sector partners continue information sharing to compensate for reduced federal capacity.
- Prioritize government critical assets and accept reduced proactive support for commercial entities during short shutdowns.
From Checklists To Continuous Resilience
- DOD's Cyber Risk Management Construct shifts from static checklists to continuous, resilient defense.
- Steve Zalewski frames resilience and evidence-of-defense as essential alongside prevention.