Following the release of President Biden’s National Cybersecurity Strategy, Acting National Cyber Director Kemba Walden explained that the Biden Administration is “expecting more” from owners and operators in critical infrastructure sectors, embracing the concept of a new cyber social contract advanced by Walden’s predecessor, Chris Inglis. That vision calls upon critical infrastructure operators and other major private sector entities to assume greater responsibility for hardening U.S. cybersecurity, even beyond their own platforms. It marks a recognition that cybersecurity, in the face of escalating threats, requires commitment from and collaboration across federal government agencies and their private sector partners.
Several efforts are also underway to address root cybersecurity concerns and develop tools and frameworks that work across sectors. The National Institute of Standards and Technology (NIST) released Special Publication 800-82, a Guide to Operational Technology (OT) Security, which offers guidance on addressing the “unique performance, reliability, and safety requirements” of systems that underpin a number of critical functions. Congress passed the…