Christopher Krebs, director of the Cybersecurity and Infrastructure Security Agency (CISA) and a 2020 Wash100 Awardee, said agencies transitioning to the cloud to support telework should consolidate and increase investments in security tools to better manage cyber threats, Nextgov reported Tuesday.
“We have to make sure that … when we have all these federal agencies that are shifting to a remote work environment or have shifted to a remote environment, that are introducing new risks, that are expanding their attack surface, that we don’t take our foot off the gas in terms of the progress we’ve made through programs like [Continuous Diagnostics and Mitigation],” Krebs said Tuesday at the annual Billington cybersecurity conference.
“We should be doubling down on those investments right now, we should be accelerating the deployment of security tools like endpoint detection and response,” he added.
Krebs noted that CISA and other agencies that had moved to the cloud were able to steer clear of some vulnerabilities associated with virtual private networks that threat actors home in during the COVID-19 pandemic.