Federal agencies are racing against the clock to meet the September 30 deadline for implementing zero-trust cybersecurity requirements set by the Office of Management and Budget (OMB). These requirements are part of a multi-year plan to protect federal agency users, networks, devices, and data using various cybersecurity techniques. One of the biggest challenges agencies face is inventorying and monitoring the complex landscape of Information Technology (IT), Operating Technologies (OT), and the Internet of Things (IoT).
The convergence of data and applications linked to these devices has created new security risks that agencies must address. A recent report stated, “The widespread adoption of OT devices not only expands the number and diversity of assets agencies must manage but also the range of vulnerabilities they need to address. Linking OT data and devices to IT systems creates new pathways for cyberattacks that adversaries are exploiting with increasing frequency.”
Agencies must implement tools and measures to fully understand all devices connected to their networks.
They also need to be ready to provide detailed asset reports to the Cybersecurity and Infrastructure Agency (CISA) within 72 hours. According to Ryan Hauptman, Federal Civilian Director at Asc3nd Technologies, there is no “Easy Button” for automating the digital work required to meet these requirements. Agencies have to carefully assess their needs and select the right tools and technologies to monitor devices across diverse technology ecosystems.
“Federal customers don’t have enough time, the tools they have are inefficient, and they have limited resources to solve the problems they face,” Hauptman said.
Federal agencies speeding cybersecurity measures
Asc3nd Technologies provides tailored solutions and collaborative partnerships to help agencies navigate these challenges.
Its “Innovation Day” workshops aim to speed up the cybersecurity learning curve and help agency executives find the most suitable solutions for their situations. “When we do these Innovation Days, it is all about bringing technology to the customers and solutions to problems they don’t have time to research,” explains Sarn Bien-Aime, Founder and CEO of Asc3nd Technologies. These events give agency executives a condensed overview of cutting-edge technologies and potential solutions to their cybersecurity challenges.
The urgency for finding these solutions is highlighted by high-profile cyberattacks. For example, the Colonial Pipeline ransomware incident shut down a major fuel pipeline, causing widespread disruptions and showing the vulnerability of critical infrastructure. Cybercriminals have also targeted the healthcare sector.
The Department of Health and Human Services reported a 278% increase in large ransomware breaches from 2018 to 2022. These attacks can disrupt patient care, compromise sensitive data, and even put lives at risk. The report outlines a comprehensive approach to cybersecurity and alternative solutions available to agencies to help automate and orchestrate their IT and OT asset monitoring.
Asc3nd Technologies Group is among those assisting federal agencies in meeting federal zero-trust security goals.
