President Trump issued an Executive Order (EO) on May 11, covering cybersecurity for federal networks and critical infrastructure. The cybersecurity guidance for federal networks is particularly important for fashion and technology companies that have submitted information to the federal government — for intellectual property protection, grants, or even government contracts — that is not yet publicly available. The EO directs all agencies to use the National Institute of Standards and Technology (NIST) Cybersecurity Framework for cybersecurity risk management. NIST initially developed the Framework in collaboration with industry in 2014 as a way to provide businesses of varying sizes with guidelines to manage cybersecurity risk.

The EO provides guidance for the private sector, directing DHS and the Department of Commerce— in consultation with the Attorney General, Federal Trade Commission Chair, and other agency heads— to “improve the resilience of the internet and communications ecosystem” and “dramatically” reduce cyber threats. The President’s statement on the EO specifically mentions convening private sector stakeholders to address “Internet of Things (IoT) cybersecurity challenges, starting with denial of service attacks perpetrated by IoT devices.”

The EO also includes a section on the value of the cybersecurity workforce, directing several agency heads to make recommendations on increasing the cybersecurity workforce in both the public and private sectors.

The Cybersecurity Executive Order is available here.

Stay In The Know

with the Washington Watch newsletter