Nationwide Cybersecurity Assessment Achieves Record Engagement and Positive Outcomes

Strengthening Cybersecurity in State, Local, Tribal, and Territorial Organizations

In an era where cyber threats are escalating at an alarming rate, state, local, tribal, and territorial (SLTT) organizations find themselves on the front lines of defense against both foreign and domestic cybercriminals. The rapid evolution of artificial intelligence has made it easier for malicious actors to exploit vulnerabilities within government systems, complicating the efforts of cybersecurity professionals tasked with safeguarding sensitive information. To combat these challenges effectively, it is imperative for SLTT organizations to conduct regular self-assessments that identify their strengths and weaknesses, ultimately maturing their cybersecurity programs over time.

The Nationwide Cybersecurity Review (NCSR)

One of the most valuable resources available to SLTT organizations is the Nationwide Cybersecurity Review (NCSR), a no-cost assessment sponsored by the U.S. Department of Homeland Security (DHS) and conducted by the Multi-State Information Sharing and Analysis Center (MS-ISAC). This initiative is open to all public sector organizations at the SLTT level, providing a structured framework for evaluating cybersecurity maturity. The insights gained from the NCSR are crucial, as DHS compiles the results into a bi-yearly, anonymous summary report delivered to Congress, offering a comprehensive overview of the cybersecurity landscape across SLTT communities.

Recent Findings from the NCSR

The latest NCSR has shown promising trends, with a 14% increase in participation compared to the previous year. Over 4,210 organizations completed the assessment between October 2023 and February 2024, reflecting a growing awareness of the importance of cybersecurity. The findings reveal that higher-scoring areas included identity management and access control, awareness and training, environment monitoring, and incident mitigation planning. However, there are notable gaps in areas such as risk management activities, testing of response and recovery plans, and the implementation of disaster recovery plans.

A concerning statistic from the NCSR indicates that 79% of respondents have fewer than five dedicated security employees, while 72% cite “lack of sufficient funding” as their primary security concern. These figures underscore the challenges faced by SLTT organizations in building robust cybersecurity frameworks.

Steps to Strengthen Cybersecurity Posture

To enhance their cybersecurity posture, SLTT organizations can implement several strategic steps:

1. Leverage Federally-Funded Services: Organizations should take advantage of services offered by the MS-ISAC and the U.S. Cybersecurity and Infrastructure Security Agency (CISA). These services include 24x7x365 threat monitoring and Malicious Domain Blocking and Reporting (MDBR), which can significantly bolster an organization’s cybersecurity defenses.

2. Regular Review and Testing: Establishing a routine for reviewing and testing risk management processes, incident response activities, and disaster recovery capabilities is essential. This proactive approach ensures that organizations are prepared to respond effectively to potential cyber incidents.

3. Develop and Communicate Security Policies: Creating comprehensive security policies and effectively communicating them to executives, employees, and third-party stakeholders is vital. Clear policies help establish a culture of security awareness and accountability within the organization.

4. Report Cybersecurity Metrics: Regularly reporting organizational cybersecurity metrics to management or executive teams can help justify and prioritize future investments in cybersecurity. This transparency fosters a better understanding of the organization’s security posture and the resources needed to improve it.

5. Evaluate Against Established Frameworks: Organizations should evaluate their practices within formal cybersecurity frameworks, such as the CIS Critical Security Controls (CIS Controls) or NIST’s Cybersecurity Framework (CSF). Planning for implementation of these frameworks can provide a structured approach to enhancing cybersecurity maturity.

Conclusion

As cyber threats continue to evolve, SLTT organizations must remain vigilant and proactive in their cybersecurity efforts. The Nationwide Cybersecurity Review serves as a crucial tool for assessing and improving cybersecurity maturity across the public sector. By leveraging available resources, establishing robust policies, and committing to regular assessments, SLTT organizations can strengthen their defenses against the ever-present threat of cybercrime. In doing so, they not only protect their own systems but also contribute to the overall security of our nation.