President Joe Biden enacted a new national security memorandum aimed at bolstering the resilience of critical infrastructure in the United States.
This memorandum replaces a policy that has been in place for a decade. The White House announced a comprehensive initiative to safeguard U.S. infrastructure against a range of present and future threats.
Under the directive, the Department of Homeland Security will spearhead a coordinated effort across the government to enhance the security of critical infrastructure.
It will also be responsible for submitting regular National Risk Management plans outlining government actions in this regard.
The move comes amidst growing concerns about the security of vital U.S. infrastructure, including utilities, power plants, transportation networks, and water systems.
Jen Easterly, the director of the Cybersecurity and Infrastructure Security Agency (CISA), highlighted the importance of the new policy in the face of ransomware attacks and cyber-attacks on water systems by adversarial entities.
In February, U.S. agencies revealed the activities of an advanced Chinese hacking group known as “Volt Typhoon,” which has been targeting critical infrastructure for up to five years.
This group has infiltrated networks associated with aviation, rail, mass transit, highways, maritime operations, pipelines, and water utilities.
The widespread nature of these cyber intrusions has prompted the White House to engage with the private technology industry, seeking collaboration to track and counter such activities.
Biden’s memorandum mandates the U.S. Intelligence Community to gather and share intelligence with federal agencies, state and local partners, and infrastructure operators.
The White House emphasized the persistent threat posed by nation-state actors and non-state entities targeting American critical infrastructure, especially during times of crisis or conflict.
The administration is taking proactive measures to fortify the nation’s defenses and ensure the resilience of critical infrastructure against cyber-attacks and other malicious activities.