When CyberShare: The Small Broadband Provider Information Sharing and Analysis Center (ISAC) scheduled CISA Executive Director Brandon Wales for a webinar to discuss cyberthreats and protection, we knew it was going to be jam-packed with information.
The webinar did not disappoint. “IN ARMS: Combating Cybersecurity Threats to Critical Infrastructure” provided attendees a taste of everything cybersecurity: basic background, information on nation-state threats, the largest threats for smaller operators, low-hanging fruit on the protection side, mitigation measures, and resources.
CISA is a relatively new agency, a component of the Department of Homeland Security, whose role is to protect U.S. critical infrastructure from cyber threats. As Executive Director, Wales leads long-term strategy at the agency and ensures collaboration across departments. Below are key takeaways from the conversation I had with him about what small broadband providers need to know now.
1. Threats from criminal hackers are the most pressing. American companies face substantial ransomware threats from criminals that are looking to target companies where they think they’ll pay quickly to get their businesses up and running. This requires diligence from companies of all sizes.
2. Patching known vulnerabilities is the first step companies should take. Prioritize where your activity should be focused. The CISA KEV (Known Exploited Vulnerabilities) catalog lists vulnerabilities that are most likely to be used by an adversary to compromise the network – fix those first.
3. Use multi-factor authentication (MFA) and encryption everywhere possible. If you can’t use MFA across the board, certainly use it for privileged accounts. Retire end-of-life software products that no longer have updates and are therefore vulnerable. Change the default passwords that come from manufacturers. Reach out to CISA for resources that help you and complement your current efforts. Put in place a robust written response plan that dictates what you will do IF you are attacked, a plan that has been documented and practiced.
4. Cybersecurity is a shared responsibility. The federal government is doing what it can to both deter potential adversaries and hold them accountable when malicious behavior occurs. The rest is an ongoing shared responsibility. Even small companies need to be aware that they are the first line of defense to protect their network. You don’t need an entire team to take necessary steps to protect your assets.
5. ISACs and CISA play important roles and work together. ISACs like CyberShare have been a key partner to CISA and are a key part of cybersecurity. CISA cannot reach everyone, but if CISA can reach ISACs, and ISACs reach their members, CISA’s reach goes farther. ISACs are a critical tool, fostering sharing of information and collaboration.
We were pleased to be able to offer this free broadband-industry webinar with our sponsors CCA, NTCA, NRECA, RWA, Telcom Insurance Group and WISPA and encourage anyone involved in operating and securing communications networks to view it here.
CyberShare: The small broadband provider ISAC promotes the resiliency and continuity of operation of small network operators across the United States by collecting and disseminating threat information, indicators and mitigation strategies from a variety of public and private sources and facilitates communications among participants. Working closely with industry partners, the federal government and other stakeholders, CyberShare helps small broadband providers recognize, analyze and respond to vulnerabilities, threats and other risks. Learn more.