President Biden signed New NDAA Bill for Private Sector to protect US Infrastructure

Listen to this article

US President Joe Biden signed a new defense bill (NDAA) for the private sector, rather than the US government. The private sector will be tasked with protecting most of the critical infrastructure in the country, in spite of a significant increase in high-level cyberattacks during this year. The NDAA (National Defense Authorization Act) is signed into law each year to express a plethora of issues including cybersecurity. Moreover, the NDAA for 2022 grants $770bn for defense funding by the US government. It will also now need the CISA (Cybersecurity & Infrastructure Security Agency) to update an incident response plan after every 2 years. The CISA works together with other government agencies and the private sector to create an exercise program to estimate its efficiency.

US Senator Maggie Hassan said that the NDAA of next year will ensure that the National Guard can give cyber support services to essential infrastructure entities, such as businesses and local governments. The new law will also launch a grant program at the US DHS (Department of Homeland Security), at the same time. The program is designed at bringing up partnerships on cybersecurity technologies between public and private sector organizations in the United States and Israel. The NDAA for the fiscal year 2022 will include advantages that systemize existing public-private collaborations at CISA. It is designed to provide continuous monitoring of industrial control systems that are part of the CyberSentry program.

Moreover, CISA will also have to develop the KYC (Know Your Customer) guidelines for cloud computing and other service providers in order to create the internet ecosystem. The NDAA of 2022 will address most of the cybersecurity issues experienced in the United States. Its entire distribution depends on the intentional contribution of private sector organizations. They own and operate most of the essential infrastructure in the country. However, 2021 experienced a number of high-level data breaches and cyberattacks. Those attacks badly affected Microsoft Exchange, SolarWinds, the Colonial Pipeline, and others. It is important that the NDAA had the ability to make it through the house without mandatory incident reporting requirements for private sector organizations.