The Business Times

US launches a series of 'sprints' to enhance cybersecurity in wake of major hacks

Published Fri, Apr 2, 2021 · 05:50 AM


THE US Department of Homeland Security (DHS) is undertaking a series of "sprints" to enhance American cybersecurity in the wake of major attacks.

"I am announcing today a series of 60-day sprints, each focused on the most important and most urgent priorities needed to achieve our goals," DHS secretary Alejandro Mayorkas said at a virtual event on Wednesday.

The initiatives will focus on fighting ransomware, improving the resilience of industrial control systems, protecting transportation and election security and furthering international capacity building.

His remarks laid out the department's cyber strategy for the Biden administration's first year. President Joe Biden took office the month after the disclosure of a sprawling cyber attack by suspected Russian hackers, who compromised popular software from SolarWinds to hack into nine government agencies and approximately 100 private sector companies.

"Our government got hacked last year, and we didn't know about it for months," Mr Mayorkas said of the attack. "This incident is one of many that underscores the need for the federal government to modernise cybersecurity defences and deepen our partnerships."


Start and end each day with the latest news stories and analyses delivered straight to your inbox.


In addition to its ongoing remediation of the SolarWinds attack, the Biden administration is responding to other digital incidents.

Microsoft revealed in March that suspected Chinese hackers had exploited vulnerabilities in its email software, which cybersecurity experts say compromised tens of thousands of entities.

In February, a hacker breached computer networks at a Florida water treatment plant and briefly boosted the level of a toxic chemical - an incident Mr Mayorkas called a "powerful reminder of the substantial risks we need to address".

Beyond the 60-day sprint priorities, he also described series of issues that will hold his "sustained personal attention".

These include securing the digital supply chain, ensuring democracyrelated infrastructure remains resilient, and planning for future endeavours such as the adoption of new encryption algorithms as quantum computing advances.

Mr Mayorkas also placed cybersecurity and the work of DHS' Cybersecurity and Infrastructure Security Agency (CISA) in the context of global democracy.

"Far too often cybersecurity is used as a pretext to infringe on civil liberties and human rights," he said. "A free and secure cyber space is possible and we will champion this vision with our words and our actions."

It could take years for the department to fully implement his vision, Mr Mayorkas said. The US$650 million Congress set aside for CISA in a stimulus package enacted earlier this month is a "down payment" on the work the agency has in store, he added.

CISA - which Mr Mayorkas characterised as the "most trusted interlocutor" between government and the private sector - will launch an awareness campaign for the private sector about the agency's capabilities, and a grant programme for critical industries to take advantage of its services, he said.

Lawmakers are keen to ensure CISA has the tools it needs. Congressman Jim Langevin, a Rhode Island Democrat and member of the Cyberspace Solarium Commission, vowed in a press release after Mr Mayorkas' remarks to get CISA a "robust allocation of the national defence budget function funding".

"Congress must follow up on the investment in federal network resilience we made in the American Rescue Plan Act with sustained funding through the appropriations process," Mr Langevin said. BLOOMBERG


BT is now on Telegram!

For daily updates on weekdays and specially selected content for the weekend. Subscribe to



Get the latest coverage and full access to all BT premium content.


Browse corporate subscription here