A satellite view of Oldsmar s water reclamation facility (Photo: Google Maps)
As the investigation into the hacking of a water treatment facility in Florida continues, cybersecurity experts say the incident points to the urgent need to enhance operational technology security. The lesson to be learned here is that public sector organizations that provide critical services - which are largely unregulated for security - need some scrutiny on their IT and OT security, says Mike Hamilton, the CISO of CI Security, who formerly worked at the Department of Homeland Security.
The Friday attack against the water treatment facility in Oldsmar, Florida, is being investigated by the local Pinellas County Sheriff s Office, which has notified the FBI and U.S. Secret Service.
On January 19, 2021, the U.S. Department of Commerce (“DOC”) issued an interim final rule governing transactions in Information and Communication Technology or Services (“ICTS”).
In response to a U.S. government consensus that trade with China involves grave national security risks, the Trump Administration promulgated a broad series of China-directed export controls, economic sanctions and import rules. The flow of trade measures became a torrent in the Trump Administration’s final months. This alert briefly surveys key new trade controls from late in the Trump Administration and Chinese policy responses that the Biden Administration inherits.
It is not clear that the Biden Administration will prioritize a more regularized trading relationship with China. As it moves toward a more traditional governance, the Biden Administration may seek to develop an overall strategic policy toward China before undertaking piecemeal changes. When coupled with strong congressional support for tough measures on China, major modifications in U.S. treatment of China would not appear likely in the near term.
International Trade Update
U.S. Commerce Department Issues Interim Regulations Establishing Review Process for Information and Communications Technology and Services Supply Chains
January 27, 2021
Share
On January 19, 2021, the U.S. Department of Commerce (Commerce) issued interim final regulations (interim rules) implementing Executive Order 13873, Executive Order on Securing the Information and Communications Technology Services Supply Chain (EO), which was intended to address alleged threats against information and communications technology and services (ICTS) in the United States. The new review mechanism focuses on transactions involving any acquisition, importation, transfer, installation, dealing in, or use of ICTS that has been designed, developed, manufactured, or supplied by parties owned by, controlled by, or subject to the jurisdiction or direction of “foreign adversaries.”
BankInfoSecurity
Compliance
March 29, 2021
DougOlenick) • January 28, 2021
Christopher DeRusha (Source: Columbia University s School of International and Public Affairs)
Former Obama cybersecurity official Chris DeRusha has been appointed federal CISO by the Biden administration after having served as CISO for the Biden campaign.
Welcome aboard Chris DeRusha, our new Federal CISO! @ciodotgov Maria Roat (@RoatMaria) January 26, 2021
DeRusha s position, which falls under the Office of Management and Budget, entails serving as the federal government s lead cybersecurity strategist, and he will act as the liaison between the White House and the departments of Homeland Security and Defense, the Office of the Director of National Intelligence and agencies CISOs for all federal cybersecurity activities (see: