Improvements Needed in Global ICT Supply Chain Cybersecurity, Industry Experts Say

摘要

Public-private partnerships are important to improving cybersecurity within the global informationnand communications technology (ICT) supply chain, said Joe Jarzombek, director-software assurance in thenDepartment of Homeland Security’s (DHS) Office of Cybersecurity & Communications. Such partnerships,nincluding DHS’s Software Assurance program, are critical when “you realize that those running our criticalninfrastructure have the same needs we have,” he said Thursday at a Brookings Institution event. The federalngovernment has a responsibility to help critical infrastructure operators and owners address ICT vulnerabilities,nbut there needs to be "public will" to make it happen, Jarzombek said. DHS is working with the NationalnInstitute of Standards and Technology to foster an industry-led effort to develop the CybersecuritynFramework, a voluntary set of cybersecurity standards and best practices to protect critical infrastructure, asnlaid out in President Barack Obama’s February cybersecurity order (CD Feb 14 p1).