https://www.americancityandcounty.com/wp-content/themes/acc_child/assets/images/logo/footer-logo.png
  • Home
  • Co-op Solutions
  • Hybrid Work
  • Commentaries
  • News
  • In-Depth
  • Multimedia
    • Back
    • Podcast
  • Resources & Events
    • Back
    • Resources
    • Webinars
    • White Papers
    • IWCE 2022
    • How to Contribute
    • Municipal Cost Index – Archive
    • Equipment Watch Page
    • American City & County Awards
  • About Us
    • Back
    • About Us
    • Contact Us
    • Advertise
    • Privacy Statement
    • Terms of Service
American City and County
  • NEWSLETTER
  • Home
  • Co-op Solutions
  • Hybrid Work
  • Commentaries
  • News
  • In-Depth
  • Multimedia
    • Back
    • Podcasts
  • Resources/Events
    • Back
    • Webinars
    • White Papers/eBooks
    • IWCE 2022
    • How to Contribute
    • American City & County Awards
    • Municipal Cost Index
    • Equipment Watch Page
  • About Us
    • Back
    • About Us
    • Contact Us
    • Advertise
    • Cookie Policy
    • Privacy Stament
    • Terms of Service
  • newsletter
  • Administration
  • Economy & Finance
  • Procurement
  • Public Safety
  • Public Works & Utilities
  • Smart Cities & Technology
  • Magazine
acc.com

Commentaries


Photo by Pete Linforth from Pixabay

Commentary

What local governments can do to build better cybersecurity

What local governments can do to build better cybersecurity

  • Written by Rufus Coleman
  • 23rd June 2021

Ensuring the funding of proper cybersecurity and other cyber-related projects has long been a challenge in the public sector. There are few incentives to invest in cyber because it’s not easy to boast about to constituents as the threats it protects against are nebulous and often unseen.

However, the recent SolarWinds, Microsoft Exchange and Colonial Pipeline attacks show that this mindset can hurt us. These attacks have been expensive, public reminders that making security an afterthought is impractical—it’s too dangerous, costly and unpredictable.

The recently passed American Rescue Plan recognized the danger of this mindset and earmarked $350 billion in flexible aid to state and local governments, giving them great autonomy to use these funds to best serve their needs.

What my conversations with local governments reveal is that the tide may be turning. These organizations are investing holistically in infrastructure. Their plans for building hospitals and roads, deploying aid to small businesses and other impacted constituents, and rolling out vaccines, have one thing that ties them all together: cybersecurity.

The sauce, not the garnish

In the highly centralized network architecture that many governments have traditionally run, security was often seen as a garnish—something that was nice to have but not integral to completing the dish.

That approach is no longer feasible. Advancements in cloud-based applications and services, the proliferation of IoT and other connected devices, and the onset of the pandemic and remote work elevated the importance of security. Suddenly, hundreds or even thousands of devices were connecting to the network, many from outside the network itself and its centralized suite of security tools, revealing new avenues of vulnerability that bad actors could exploit.

What’s more, the data these devices are working with is increasingly important—and valuable. From cameras collecting traffic data to hospitals electronically recording patient data to the online education systems that protect student data, local governments are collecting, transmitting, storing and analyzing vast amounts of personal information about their constituents.

Bad actors know this. In fact, a recent survey found that 84 percent of government organizations in the United States saw one or more cloud networking attacks in the past year. Increasingly, government organizations are finding that they need to do more than just secure devices, they need to be vigilant wherever the data is. And increasingly, the data is everywhere.

In this new data-centric, borderless environment then, security can no longer be a “garnish” to traditional networking. It needs to be seen as the “sauce,” something that covers everything in fundamental architectures of the network and an integral part of any project. The stakes are simply too high.

The good news is that the litany of recent breaches and high-profile attacks has forward-thinking governments thinking smart. Many of them already understand the central role that cybersecurity now plays and so are making sure to build it into everything they do.

For example, a county health agency opening 15 new clinics knows that it now has 15 potential sites of exposure—plus the infrastructure connecting them to one another, and to the agency headquarters—that need to be secured to ensure the health and privacy of its patients.

Local law enforcement organizations are recognizing that cybersecurity plays a critical role in ensuring that the chain of custody remains unbroken, that evidence to be used in court remains secure—even when an Assistant DA wants to review it at home on their iPad instead of printing out thousands of pages, and that digital evidence such as body camera footage isn’t tampered with.

Even the construction of physical infrastructure now relies on robust cybersecurity. A local department of transportation building a bridge needs to ensure that the ad hoc networks, IoT devices and other digital systems that spring up around construction sites are secure, so that massive engineering and construction teams can coordinate, workers are paid and the bridge is ultimately safe for use.

These government agencies are making networking and cloud investments that make it easier, safer, and more convenient to collect revenue from and disperse payments to the public. And they are increasingly adopting a “defense in depth” approach, that ensures that as the network expands to take advantage of these new opportunities, they can protect everywhere as well.

For the new federal funding to be maximally effective then, it must recognize the prime role that cybersecurity now plays in any project. To get the most bang for their buck, governments across the country should consider maintaining, improving and adapting their systems to give themselves the ability to protect their citizens from the constantly evolving techniques malicious actors use to undermine systems.

This new funding is an opportunity for these agencies to not only improve their cybersecurity but recalibrate their whole approach to one that is data-centric and provides defense in depth across the organization.

They should take it. The costs are immeasurably high, the risks unimaginably great, and the privacy of citizens is far too valuable to do otherwise.


Rufus Coleman is the director of sales and general manager of the newly formed State/Local Government and Education (SLED) business at Infoblox. In this role, he manages all facets of the sales operation, and is responsible for establishing channel, marketing and business development programs. Coleman has worked with technology in the public sector domain for more than 20 years.

Tags: homepage-featured-1 homepage-featured-3 homepage-featured-4 Smart Cities & Technology Commentaries Commentaries Smart Cities & Technology Commentary

Most Recent


  • MSPs
    The MSP downstream cyberthreat paradox: Understanding the city and county connection
    Recently the Cybersecurity and Infrastructure Security Agency (CISA) along with the FBI, NSA, and international cyber authorities issued a cybersecurity advisory aimed at protecting managed service providers (MSPs) and their customers. This high-level advisory has been gestating for some time ever since the SolarWinds and Kaseya supply chain cyber-attacks. A software supply chain attack occurs […]
  • As ransomware threat increases, a shift in minimum cyber insurance standards is hardening digital defenses
    In the last decade, the threat of ransomware and other cyberactivity has increased dramatically—more than ever, targeted organizations are paying the criminal perpetrators to have their information restored.  “Over the last year there has been an almost threefold increase in the proportion of victims paying ransoms of $1 million or more: up from 4 percent in 2020 […]
  • EV chargers
    Cities steadily adding more EV chargers for public to use
    Local governments are making headway as they develop their electric vehicle (EV) infrastructure. “Progress varies depending on what stage governments are at in the electrification strategy and funding availability,” says Brandon Branham, assistant city manager and chief technology officer for Peachtree Corners, Ga., which is part of the Atlanta metro. Its 2022 population is estimated […]
  • infrastructure
    The road to America’s infrastructure overhaul is paved in technology
    When it comes to infrastructure construction and maintenance, the road we took to get here will not lead us where we need to go tomorrow. An influx of government funding including the Bipartisan Infrastructure Law, American Rescue Plan Act (ARPA) and various coronavirus recovery programs provides a generational opportunity to invest in roads, bridges, airports […]

Leave a comment Cancel reply

-or-

Log in with your American City and County account

Alternatively, post a comment by completing the form below:

Your email address will not be published. Required fields are marked *

Related Content

  • Clearing a path to multicloud as the new foundation for digital government
  • Preventing cloud data leaks: four key actions city and county government organizations can apply to mitigate risk
  • Server bank
    Lack of budgets for cloud security initiatives slows down cloud adoption for government
  • What local governments can do to build better cybersecurity
    The IACP’s cloud computing principles address new data collection technologies

Twitter


AmerCityCounty

Minor league baseball is helping cities hit a revitalization home run dlvr.it/SQc5N4

18th May 2022
AmerCityCounty

Sustainable Purchasing Leadership Council can help governments get up to speed on sustainable buys dlvr.it/SQbwqL

18th May 2022
AmerCityCounty

The MSP downstream cyberthreat paradox: Understanding the city and county connection dlvr.it/SQYVjs

17th May 2022
AmerCityCounty

Philanthropic group to launch assistance portal for local admins navigating federal bureaucracy dlvr.it/SQY16G

17th May 2022
AmerCityCounty

Report: Nearly 95 percent of America’s mayors face harassment, threats and violence dlvr.it/SQTn2z

16th May 2022
AmerCityCounty

The PIO’s Ultimate Guide to Social Media dlvr.it/SQTdCK

16th May 2022
AmerCityCounty

Gain Greater Visibility Into Your Public Works Fleet dlvr.it/SQSqXG

16th May 2022
AmerCityCounty

Report: Almost half of public sector retirees don’t touch their retirement plans for a decade dlvr.it/SQKMjp

13th May 2022

Newsletters

Sign up for American City & County’s newsletters to receive regular news and information updates about local governments.

Resale Insights Dashboard

The Resale Insights Dashboard provides model-level data for the entire used equipment market to help you save time and money.

Municipal Cost Index

Updated monthly since 1978, our exclusive Municipal Cost Index shows the effects of inflation on the cost of providing municipal services

Media Kit and Advertising

Want to reach our digital audience? Learn more here.

DISCOVER MORE FROM INFORMA TECH

  • IWCE’s Urgent Communications
  • IWCE Expo

WORKING WITH US

  • About Us
  • Contact Us

FOLLOW American City and County ON SOCIAL

  • Privacy
  • CCPA: “Do Not Sell My Data”
  • Cookies Policy
  • Terms
Copyright © 2022 Informa PLC. Informa PLC is registered in England and Wales with company number 8860726 whose registered and Head office is 5 Howick Place, London, SW1P 1WG.
This website uses cookies, including third party ones, to allow for analysis of how people use our website in order to improve your experience and our services. By continuing to use our website, you agree to the use of such cookies. Click here for more information on our Cookie Policy and Privacy Policy.
X