Cybersecurity memo standardizes federal incident response

A recently released memorandum signed by President Biden outlines security protocols for national security systems, which face a different set of obstacles when dealing with highly sensitive and classified data.

The memo, "Memorandum on Improving the Cybersecurity of National Security, Department of Defense, and Intelligence Community Systems," shifts the reporting structure regarding cybersecurity within the federal government, requiring departments and agencies managing national security to communicate with the Director of the National Security Agency (NSA), who also holds the title of National Manager.

"In terms of prioritization, if the National Manager needs to say, 'Departments and agencies, Log4j is a huge problem, you need to deprioritize everything relative to this and go out and fix it,' this actually gives them the authority to do that," says Greg Bednarski, Chief of Cybersecurity Policy and Strategy at NSA.

The memo also establishes a federal playbook for managing cybersecurity incidents, aiming to increase standardization and transparency throughout federal departments. "All departments and agencies will really be graded against their ability to respond both in training as well as in real cybersecurity events — not just to their secretary level, but also up to the White House level," says Bednarski.

Madeline Lauver joined Security magazine in 2021 as its Assistant Editor. She covers news affecting enterprise security leaders, including physical security, cybersecurity, leadership and management, risk and resilience and more. Within her role at Security, Lauver focuses on news articles, Web Exclusives, features, and several departments for Security’s monthly digital edition, as well as managing social media and multimedia content. Lauver graduated in 2019 with a BA in English, German and Media Studies from Kalamazoo College.

Security’s digital transformation is now entering stage 5. Complex security technologies are connected to HR systems, global security operations centers, and other building technologies in a world where employees now work in two places: home and the corporate office.

Service reliability underpins every modern business. Without reliable services, organizations cannot build the trust required to keep their customers loyal or free up time to focus on product innovation and differentiation.