Critical Infrastructure Protection: Complex Challenges

Philip Reitinger, a former “Deputy Under Secretary” for U.S. Department of Homeland Security (DHS), a Director of the National Cyber-security Center (NCSC) and currently President and CEO of Global Cyber Alliance participates in Risk Roundup with Jayshree Pandya to discuss the “Complex Challenges Facing Critical Infrastructure Protection”.   Introduction Irrespective of private or public, most of the critical infrastructure as seen across nations today, has been present in one form or other for quite some time. However, it is only recently that the critical infrastructure has become dependent on information, communication and digitization technology (ICDT). The assets identified as critical infrastructure in cyberspace, geospace and space (CGS) are vital for the survival, success and sustainability of respective nations as they contribute to its very progress and development. These systems and assets in CGS are so vital to each nation that its incapacity or destruction would bring a debilitating impact on not only the physical security, but also the CGS security, economic security, national security, safety and very survival of nations. Irrespective of nations, these CGS infrastructures must maintain their optimal conditions under all circumstances. Safeguarding them—needs to be the utmost priority for each and every nation: its government, industries, organizations, academia and individuals (NGIOA-I). Having said that, the well-being of this planet, human species, regions, nations and industries, organizations, academia and individuals relies upon the safety, security and sustainability of the CGS critical infrastructure—those assets, systems, and networks in cyberspace, geospace and space (CGS) that underpin the very fundamentals of a sustainable society. Critical Infrastructure: Digitalization Critical infrastructure is used by both governments as well as private industry and is a term to describe infrastructures, systems and assets in CGS that are essential for the progress and development of society– whose incapacity or destruction would have a debilitating impact on security at all levels. The digitalization of critical infrastructures such as the electric grid, water supply, transportation, financial systems and emergency services have benefited significantly from greater integration of information, communication and digitization technologies (ICDT) to make systems at all levels (local /national /regional /global) more efficient, accessible, resilient and reliable. The rapidly digitizing critical infrastructure across nations uses many software applications to manage not only client-side business processes like customer care, human resources, billing, accounting, data compilation, analytics and more but also customer-facing web services like online bill-pay and also to control some very sensitive operational processes and physical functions. Critical Infrastructure: Security Risks As the increasing digitization and automation of nations critical infrastructures provides more cyber access points for cyber criminals to exploit, there is a growing fear of cyber-crimes and criminal activities that would impact not only cyber-security but also geo-security and space-security. The advances in the availability and sophistication of malicious software tools and the fact that each new technology from cyberspace raises new security issues that cannot always be addressed prior to adoption in cyberspace, geospace or space (CGS) is a cause for concern and a critical risk facing not only the critical infrastructure but also each individual and entity across NGIOA. Amidst that how can any nation secure its critical infrastructures with the growing digitalization and automation challenges in CGS? While the integration of ICDT has digitalized and moderni...