The Cybersecurity EO, Firmware, and Unseeing the Rabbit - Seguridad Mania.com - España y América Latina

The president’s recently released “Executive Order on Improving the Nation’s Cybersecurity” presents new perspectives and directions on preventing increasingly destructive ransomware and cyber attacks. While all ten sections in the executive order provide instructions for federal agencies and CISOs in the commercial sector, two particular sections notably break away from traditional best practices and call for new approaches. - The first of these, Section 3, calls for “Modernizing Federal Government Cybersecurity,” focusing especially on the design and implementation of Zero Trust architectures in government networks. - The second, Section 4, concentrates on strengthening and securing the complex, multi-headed software supply chain. Both of these sections have profound implications for firmware security. What’s more, they introduce new firmware requirements that few cybersecurity professionals are ready to demonstrate, let alone understand. In this session, Eclypsium’s Director of Product Marketing, Michael Thelander, and VP of Federal business, John Loucadies, will discuss: - How firmware security is central to both the spirit and the letter of the executive order - What it means to apply Zero Trust principles and practices to firmware and device security objectives - What you can do -- today -- to build a software bill of materials, sn SBOM, that also includes critical and increasingly vulnerable firmware details - We’ll also explain the concept of “unseeing the rabbit” or “How to break a huge executive order into immediately actionable and valuable chunks.”