CISA’s Role in Cybersecurity Following the Change Healthcare Cyber Attack is Proving to be Multifaceted

In wake of the devastating cyber attack on Change Healthcare, a significant provider of healthcare technology, the Cybersecurity and Infrastructure Security Agency (CISA) has come under scrutiny for its response. Several political leaders are now demanding transparency and action, as this incident underscores the growing menace of cyber threats to critical infrastructure. The focus now shifts to how government agencies like CISA can enhance their roles to prevent such breaches in the future. 

How can government intervention improve cybersecurity measures effectively?

Dr. Robin Berthier, a Network Auditor and CEO of Network Perception, listed an in-depth explanation of the situation. He discussed the dual role of CISA in setting standards and enforcing compliance, which is crucial for elevating cybersecurity practices across various sectors.

Key takeaways from Dr. Berthier’s insights:

• The government must aid in enhancing cybersecurity hygiene to mitigate disruptions in critical operations.
• CISA is instrumental in establishing a clear vision and benchmarks for cybersecurity, guiding critical infrastructures on their journey to maturity.
• Through tools like the Cybersecurity Performance Goals (CPGs), CISA helps infrastructure owners assess and prioritize their cybersecurity investments.
•  There is a crucial need for understandable and actionable regulatory frameworks that organizations can follow to prioritize cybersecurity effectively.
• Beyond setting guidelines, enforcing compliance and maintaining accountability are vital to ensure that best practices are adopted across critical sectors.

Article by Alexandra Simon.