The U.S. Government is on Hiatus, Cybersecurity Threats Are Not

The U.S. Government is on Hiatus, Cybersecurity Threats Are Not

Guy Franklin of SOSA discusses the lasting effects of the government shutdown.

One unforeseen consequence of the United States government shutdown is the reduction in federal cybersecurity staff and support. By Department of Homeland security tally, 43 percent of the workforce — over 1,500 employees — are furloughed. This creates opportunities for not only immediate risk but also risks that will likely stick around long after the shutdown is over.

Security Today asked Guy Franklin, the GM of SOSA, a global innovation platform with a network of over 150 multinational corporations and investors recently selected by the New York City Economic Development Corporation to develop this Global Cyber Center, for insights on what could happen if the government shutdown lasts months, or even years, as President Donald Trump has been quoted as saying.

Franklin pinpointed three risks that are evident as the government shutdown continues including vulnerability, retaining talent and the lasting events of the shutdown even when things are up and running again.

A Government Shutdown Acts as an Invitation for Hackers

Franklin explains that the continued shutdown conveys to bad actors that our country is not currently putting full efforts into national security, including the security of our networks and data.

"When adversaries detect that a nation is not operating at full-power, they often increase their attempts to breach its systems," Franklin said. "Although there will always be members on the ground during a shutdown, those numbers fall far short of what is necessary to meet national security standards. The reduction in available personnel harms the country's ability to protect its assets, including vulnerable energy grids, financial information, military bases, and telecommunication networks."

Cybersecurity Talent will Become Even Harder to Retain

Due to the increasing amount of government shutdowns, federal cybersecurity staff may begin to rethink the line of work they are in. Why continue to work when you are unsure of being paid? Here's what Franklin had to say:

"With two government shutdowns last year alone, the prospect of repeated shutdowns and staffing fluctuations is highly likely and has an impact on workplace morale and retention of government cybersecurity workers," Franklin said. "Morale drops at even the warning of a government shutdown, extending its impact beyond an actual government shutdown itself. Over time, the lack of prioritization of personnel will cause employee vacancies to linger, creating short- and long-term problems potentially beyond repair. Almost 2 million cybersecurity jobs will go unfilled by 2022 according to the Global Information Security Workforce Study conducted by Frost and Sullivan and the International Information System Security Certification Consortium."

Vulnerabilities Will Remain Long After the Shutdown has Ended

Even when things get back to normal, the state of national security will remain vulnerable. Due to the fluctuating staff and lengthy time left unmonitored on a full scale, the effects could last even after our government comes to a conclusion on funding. Research shows that breaches sometimes take days, weeks or years to detect.

"Aside from obvious short-term risks to national security, the longer a shutdown persists, the more exposed a nation becomes," Franklin said. "And with less staff to defend critical national infrastructure from ongoing threats, these impacts can deepen, in some cases beyond repair. Without proper staffing, vital improvements and updates cannot be made. Nations need to look to global teams for support when navigating these types of damaging situations."

About the Author

Sydny Shepard is the Executive Editor of Campus Security & Life Safety.

Featured

  • Gaining a Competitive Edge

    Ask most companies about their future technology plans and the answers will most likely include AI. Then ask how they plan to deploy it, and that is where the responses may start to vary. Every company has unique surveillance requirements that are based on market focus, scale, scope, risk tolerance, geographic area and, of course, budget. Those factors all play a role in deciding how to configure a surveillance system, and how to effectively implement technologies like AI. Read Now

  • 6 Ways Security Awareness Training Empowers Human Risk Management

    Organizations are realizing that their greatest vulnerability often comes from within – their own people. Human error remains a significant factor in cybersecurity breaches, making it imperative for organizations to address human risk effectively. As a result, security awareness training (SAT) has emerged as a cornerstone in this endeavor because it offers a multifaceted approach to managing human risk. Read Now

  • The Stage is Set

    The security industry spans the entire globe, with manufacturers, developers and suppliers on every continent (well, almost—sorry, Antarctica). That means when regulations pop up in one area, they often have a ripple effect that impacts the entire supply chain. Recent data privacy regulations like GDPR in Europe and CPRA in California made waves when they first went into effect, forcing businesses to change the way they approach data collection and storage to continue operating in those markets. Even highly specific regulations like the U.S.’s National Defense Authorization Act (NDAA) can have international reverberations – and this growing volume of legislation has continued to affect global supply chains in a variety of different ways. Read Now

  • Access Control Technology

    As we move swiftly toward the end of 2024, the security industry is looking at the trends in play, what might be on the horizon, and how they will impact business opportunities and projections. Read Now

Featured Cybersecurity

Webinars

New Products

  • A8V MIND

    A8V MIND

    Hexagon’s Geosystems presents a portable version of its Accur8vision detection system. A rugged all-in-one solution, the A8V MIND (Mobile Intrusion Detection) is designed to provide flexible protection of critical outdoor infrastructure and objects. Hexagon’s Accur8vision is a volumetric detection system that employs LiDAR technology to safeguard entire areas. Whenever it detects movement in a specified zone, it automatically differentiates a threat from a nonthreat, and immediately notifies security staff if necessary. Person detection is carried out within a radius of 80 meters from this device. Connected remotely via a portable computer device, it enables remote surveillance and does not depend on security staff patrolling the area. 3

  • PE80 Series

    PE80 Series by SARGENT / ED4000/PED5000 Series by Corbin Russwin

    ASSA ABLOY, a global leader in access solutions, has announced the launch of two next generation exit devices from long-standing leaders in the premium exit device market: the PE80 Series by SARGENT and the PED4000/PED5000 Series by Corbin Russwin. These new exit devices boast industry-first features that are specifically designed to provide enhanced safety, security and convenience, setting new standards for exit solutions. The SARGENT PE80 and Corbin Russwin PED4000/PED5000 Series exit devices are engineered to meet the ever-evolving needs of modern buildings. Featuring the high strength, security and durability that ASSA ABLOY is known for, the new exit devices deliver several innovative, industry-first features in addition to elegant design finishes for every opening. 3

  • 4K Video Decoder

    3xLOGIC’s VH-DECODER-4K is perfect for use in organizations of all sizes in diverse vertical sectors such as retail, leisure and hospitality, education and commercial premises. 3