From ransomware attacks on schools and hospitals to state-sponsored hacking of water utilities, state and local governments and the equities under their care have increasingly become targets for cyberattacks from both cybercriminals and advanced nation-state actors.
At the same time as these threats are increasing, the federal government has begun to adjust course in its approach to support for preventing and responding to cyber incidents. In March, President Trump signed an Executive Order putting a greater emphasis on the roles of states and localities to prepare for disasters, including cyber attacks, signaling a shift in responsibility from the federal government. There is also uncertainty as to whether two major cybersecurity laws which govern information sharing and grant programs to local governments will be reauthorized this year by Congress.
Amidst these changes in the threat and policy landscape, more discussion and action is needed to support effective cybersecurity at the state and local levels. To address this gap, this month, Aspen Digital hosted its first in a series of convenings with stakeholders and policy experts on evolving roles in state, local, tribal, and territorial cybersecurity efforts.
Through this event and our broader policy discussions, we have identified three core areas where clarification and action is needed:
- Sustaining federal support for states’ cybersecurity efforts in key strategy areas
- Identifying and sharing robust and effective resourcing models
- Elevating cybersecurity as a priority outside of Washington