‹ All episodes

The Business of Security

#33 – IoT Security in the US Federal Government with Drew Spaniel

January 07, 2021 Business-Of-Security Season 1 Episode 33
#33 – IoT Security in the US Federal Government with Drew Spaniel
The Business of Security
More Info
The Business of Security
#33 – IoT Security in the US Federal Government with Drew Spaniel
Jan 07, 2021 Season 1 Episode 33
Business-Of-Security

In this episode, guest Drew Spaniel walks us through the new law passed in late 2020, The IoT Cybersecurity Improvement Act of 2020 (HR 1668), and how if will affect not just US federal government procurement, but IoT device manufacturers, and consumers as well.

The Act calls for IoT devices to be secured by manufacturers based on NIST guidance and cybersecurity best practices. From the Congessional Budget Office:

"Under H.R. 1668, NIST also would publish standards for federal agencies, contractors, and vendors to systematically report and resolve security vulnerabilities for IoT devices. Each agency’s chief information officer would be required to ensure compliance. OMB would establish federal standards for that coordinated reporting process that are consistent with NIST’s standards and guidelines."

Guest:
Drew Spaniel, Lead Researcher, ICIT (Institute for Critical Infrastructure Technology)

Hosts:
Malcolm Harkins, Chief Security and Trust Officer, Cymatic
Chad Boeckmann, Founder/CEO, TrustMAPP

Sponsor:
TrustMAPP (https://trustmapp.com)

Apple Podcasts Spotify Amazon Music Overcast Stitcher Podcast Addict +
Show Notes

In this episode, guest Drew Spaniel walks us through the new law passed in late 2020, The IoT Cybersecurity Improvement Act of 2020 (HR 1668), and how if will affect not just US federal government procurement, but IoT device manufacturers, and consumers as well.

The Act calls for IoT devices to be secured by manufacturers based on NIST guidance and cybersecurity best practices. From the Congessional Budget Office:

"Under H.R. 1668, NIST also would publish standards for federal agencies, contractors, and vendors to systematically report and resolve security vulnerabilities for IoT devices. Each agency’s chief information officer would be required to ensure compliance. OMB would establish federal standards for that coordinated reporting process that are consistent with NIST’s standards and guidelines."

Guest:
Drew Spaniel, Lead Researcher, ICIT (Institute for Critical Infrastructure Technology)

Hosts:
Malcolm Harkins, Chief Security and Trust Officer, Cymatic
Chad Boeckmann, Founder/CEO, TrustMAPP

Sponsor:
TrustMAPP (https://trustmapp.com)