Cybersecurity Private Equity

Cyber TRUST™ Index

-2.8%

One day change

+40.9%

Change from Jan 2024

Government and Organizations Introduce New Cybersecurity Plans for 2022 [Weekly Cybersecurity Brief]

With the new year comes new resolutions. As we all decide what we would like to achieve, some organizations are deciding to focus or re-commit to their efforts on cybersecurity. From legislation in D.C. and a new program in Los Angeles to plans for the healthcare industry, we look at some of the cybersecurity announcements launching us into 2022. 

Just before exiting 2021, President Biden signed the National Defense Authorization Act of 2022 into law. As Nextgov reports, NDAA is “the go-to legislative vehicle” driving how the government and private sector operators handle cybersecurity issues, especially around critical infrastructure. While the Act dictates that the Cybersecurity and Infrastructure Security Agency has a biennial schedule to update its incident response plan including consultation from relevant private agencies, it still relies on voluntary participation from such private entities. Due to this detail, some are critical of the legislation. It will remain to be seen how this collaboration unfolds.

Across the country from D.C., the city of Los Angeles is introducing its own cybersecurity initiative. With the creation of a new app, officials are hoping to protect residents, specifically those using public transportation, from risks like phishing attempts. The app, called The LA Secure app, is supported by both the city and the Los Angeles County Metropolitan Transportation Authority and mimics similar smartphone offerings given in New York City and Michigan. This program builds on one that was already started when Wi-Fi connections were added to 2,300 buses running in L.A. The app notifies riders when they may be connecting to an unrecognized network or a suspicious link.

Grappling with concerns it has faced particularly over the course of the pandemic, the healthcare industry is also looking to set out on a better cybersecurity course. The Healthcare Supply Chain Association, which Healthcare Global describes as working with leading healthcare group purchasing organizations (GPOs), partners to hospitals, nursing homes, nursing home pharmacies, clinics and home healthcare providers, recently released measures for medical device manufacturers, healthcare delivery organizations and service providers outlining ways to strengthen guard of patients’ privacy. According to the site’s report, the group suggests steps like “designating an information technology security officer,” “providing cyber training and assessments for staff,” “only purchasing insurance policies which cover cybersecurity risks” and “including encrypting personal authentication data” among others. 

Key Takeaways:

“Biden Signs NDAA Relying on Voluntary Private-Sector Cybersecurity Collaboration” – Mariam Baksh, Nextgov

https://www.nextgov.com/cybersecurity/2021/12/biden-signs-ndaa-relying-voluntary-private-sector-cybersecurity-collaboration/360217/ 

  • President Biden signed the National Defense Authorization Act of 2022 into law.
  • As Nextgov reports, NDAA is “the go-to legislative vehicle” driving how the government and private sector operators handle cybersecurity issues, especially around critical infrastructure.
  • The legislation still depends on voluntary reporting from private entities.

“Los Angeles launches cybersecurity app for residents” – Benjamin Freed, StateScoop

https://statescoop.com/los-angeles-launches-cybersecurity-app-for-residents/

  • The City of Los Angeles and the Los Angeles County Metropolitan Transportation Authority have introduced the LA Secure app for residents.
  • The app notifies riders when they may be connecting to an unrecognized network or a suspicious link.
  • The program is like those that have been previously launched in New York City and Michigan.

“The Healthcare Supply Chain Association’s cybersecurity plan” – Helen Adams, Healthcare Global

https://healthcareglobal.com/procurement-and-supply-chain/healthcare-supply-chain-associations-cybersecurity-plan

  • The Healthcare Supply Chain Association recently released measures for medical device manufacturers, healthcare delivery organizations and service providers outlining ways to strengthen guard of patients’ privacy.
  • According to Healthcare Global, the group suggests steps like “designating an information technology security officer,” “providing cyber training and assessments for staff,” “only purchasing insurance policies which cover cybersecurity risks” and “including encrypting personal authentication data” among others.  
  • This is increasingly important as the industry continues to transition to more practices like telehealth. 

Share