On August 4, 2023, America’s Cyber defense agency CISA announced Strategic Plan for FY24- FY26. It further adds that the plan would bring a new vision for cybersecurity, a vision grounded in collaboration, innovation, and in accountability.
The Cybersecurity and Infrastructure Security Agency (CISA) is responsible for strengthening cybersecurity and infrastructure protection across all levels of government and improving the government’s cybersecurity protections against private and nation-state hackers.
As our nation relies on connected technologies every hour of every day of our daily lives, Malicious cyber actors constantly attempt to exploit this reliance for financial or strategic gain.
We must change how we design and develop technology products, such that exploitable conditions are uncommon and secure controls are enabled before products reach the market, said the CISA.
Cybersecurity Strategic Plan outlines three enduring goals:
GOAL 1: Address Immediate Threats: CISA will work with partners to gain visibility to emerging threats and accelerate mitigation of exploitable conditions that adversaries recurringly exploit.
GOAL 2: harden the Terrain: CISA will provide support, guidance, and direction for organizations to prioritize effective security investments that measurably reduce the likelihood of damaging
GOAL 3: Drive Security At Scale: CISA aims to prioritize security in products throughout their lifecycle. Confront the challenge of unsafe technology products to reduce the risks and fully leverage the benefits posed by artificial intelligence.
“Defending the systems and assets that constitute our critical infrastructure is vital to our national security, public safety, and economic prosperity … We aim to operationalize an enduring and effective model of collaborative defense that equitably distributes risk and responsibility and delivers a foundational level of security and resilience for our digital ecosystem.”
Cybersecurity Strategic Plan Overview
According to CISA, the three-year strategic plan is a necessary and ambitious approach toward safeguarding cyberspace for all Americans.
CISA aims to optimize cyber defense operations to identify, prevent, and address acute threats and vulnerabilities and mitigate incidents more quickly throughout the implementation plan.