From a blog post by Robert K. Knake, co-author of The Fifth Domain
"In the Wall Street Journal, we lay out the case that some companies are already resilient to cyber attacks. Dmitri Alperovitch, the CTO at Crowdstrike, and the originator of the often-quoted line that there are “two kinds of companies: those that have been hacked and know it and those that have been hacked and don’t," no longer stands by that assessment. He would add a third kind of company: those that are actively managing the risk posed by even the most persistent nation-state actors. Those companies are cyber resilient.
The handful of companies that have developed resilience are spending millions of dollars and hiring thousands of cybersecurity professionals. For the nation as a whole to be resilient to cyber attacks, we will need innovations that reduce costs and automate security processes. We will also need to put in place incentives so companies truly value their own data and sufficiently invest in their own resilience.
What we need is the resolve and the budget to make our nation resilient to the threat of cyber attacks. Here, the Solarium can play an important role, not by divining a new strategy, but by studying what we need to do to implement resilience as a strategy, and convincing Congress to make the investments sorely needed to upgrade federal cybersecurity, build the connective tissue for managing threats with the private sector, and bring existing, successful programs to scale to meet the national challenge."
Comments