Cybersecurity Fundamentals – Change the Economics

Cybersecurity Fundamentals – Change the Economics

Cybersecurity Fundamentals – Change the Economics

Cyber-attacks are asymmetrical and reap large monetary and national security rewards, far greater than the resources they require.

Consider this statement from the 2014 Verizon Data Breach Investigations Report: “2013 may be remembered as the ‘year of the retailer breach,’ but a comprehensive assessment suggests it was a year of transition from geopolitical attacks to large-scale attacks on payment card systems.”

Stealing cars, robbing banks, or stealing an individual’s identity, offer less financial return than a database or stream of millions of credit card numbers. The frequency and volume of attacks indicates that current cybersecurity methods to protect sensitive information may not be sufficient, and perhaps the rate of attack will not slow until the risk or cost to the attackers becomes too high compared to the value of a breach.

Raising the cost or reducing the value of an attack is not easy, particularly when many attacks originate from countries without extradition agreements. Limited law enforcement capabilities make many of methods to combat this controversial. The notion of a counterattack requires more precision than we usually have in identifying the attacker within the necessary timeframe. A counterattack risks a great deal of collateral damage and potential diplomatic fallout. This is a long-term problem that requires long-term, indirect actions for any economic change. In that context, here are some ideas that might have an impact:

  • Participating in economic activity with the U.S. is a boon to most countries. As a result, cybercrime also impacts their economies. Before agreeing to trade agreements and economic treaties, the U.S. might require other countries to commit to cooperative law enforcement investigations and legislated programs for reducing cybercrime activities within their borders
  • Assign each credit card issued a set of decoy numbers that are recorded at the same time the real number is used to make a purchase. Over time, databases and point of sale applications will become loaded with several multiples of decoy numbers, lessening the chance that a real number is used in a fraudulent transaction involving stolen numbers. This makes it easier for the retailer to identify fraudulent transactions, and reduces the value of the compromised data

The complexity of geopolitics, technology, economic interests, and law enforcement operations for combating cyber-attacks will continue to make reaching, litigating, and incarcerating cyber-criminals very challenging. Efforts to increase the risk or cost to attackers will take a long time to implement and have an effect, but this is clearly a long time problem. 

Contributors

* Arc Aspicio |

Arc Aspicio is a management, strategy, and technology consulting firm that takes a mission-oriented approach to complex client challenges. Focused on innovation, Arc Aspicio provides services in strategy, design, human capital, operations, analytics and visualization, technology and information sharing. The company is known for a strong, collaborative culture that values gratitude, provides leadership opportunities, and explores the future. Our teams take a human-centered approach to working with clients and are flexible and responsive within dynamic Government client environments where missions evolve and new priorities arise sometimes even daily. We thrive on these situations and promote continuous improvement and new ideas. And, #welovedogs! Follow us on Twitter @arcaspicio or learn more at www.arcaspicio.com.

Lynn Ann Casey / Chief Executive Officer info@arcaspicio.com 703.465.2060

LeadersNest Names Lynn Ann Casey a FedFem Award Honoree

LeadersNest Names Lynn Ann Casey a FedFem Award Honoree

Washington, DC, October 19, 2018 — LeadersNest named Arc Aspicio CEO Lynn Ann Casey a FedFem Award Honoree. The FedFem awards salute high-impact women executives and leaders of the government contracting community. FedFem Award Honorees blend their entrepreneurial courage and Federal government support that effectively impacts the industry, national economy, and the local marketplace. 

Boosting the Mission: Developing Acquisition Requirements Guidance

Boosting the Mission: Developing Acquisition Requirements Guidance

To keep up with the fast pace of change in the field of Government acquisitions, Department of Homeland Security (DHS) components are developing their own acquisition requirements (AR) policies. However, without specific timeframes to finalize these policies, DHS agencies often lack guidance on how to develop ARs. Among DHS agencies, the U.S. Coast Guard is leading the way with their own formal policy to describe this process. To compliment the U.S. Coast Guard’s policy, DHS created the Joint Requirements Integration and Management System (JRIMS) to offer direction for agencies—to review, validate, and suggest solutions for capability gaps and requirements.

Top Qualities of Design Thinking Leaders

Top Qualities of Design Thinking Leaders

Design Thinking is on the rise in the business world. Design Thinking leaders focus on creating the best product for their clients and working with the experiences and insight of fellow coworkers. Some of the key characteristics of Design Thinking leaders present themselves in individuals who are open and subject themselves to vulnerability with clients and coworkers. These qualities help leaders to connect and build relationships with others. They also create an open flow of communication that allows for others to better share their knowledge to align with and understand the company's mission.

Think, Key, Speak: Purposeful Communications

Think, Key, Speak: Purposeful Communications

I spent the early years of my career in the United States Navy as a Naval Flight Officer on the E-2C Hawkeye, the Navy’s aircraft carrier-based Airborne Early Warning and Command and Control platform. The various missions of the aircraft demand that aircrew monitor up to ten radio frequencies, and actively speak on three or four of those, at any given moment in flight.

How Can Communities Ready Themselves for a Major Power Grid Event?

How Can Communities Ready Themselves for a Major Power Grid Event?

Communities are often the foundation for an expedited recovery following major events. But how can communities strengthen their response to, for example, a major cyber-attack or natural event, such as an Electronic Magnetic Pulse solar flare? A United States electrical grid failure could destroy a number of the nation’s high voltage transformers causing widespread outages for several weeks, even months. A public health emergency could quickly ensue particularly among the vulnerable as the ripple effects cause significant societal disruption. The Federal Emergency Management Agency’s (FEMA) strategic plan encourages and empowers communities to prepare for the inevitable impacts of future disasters. How can communities prime for major events?

Confessions of a Chief Strategy Officer

Confessions of a Chief Strategy Officer

I’ll admit it, I was a little smug. After more than 20 years in the consulting business helping clients develop, implement, and integrate their strategies, I thought… “how hard could it be to do the same things for my own company – a company of consultants?” I had the commitment of my leadership, a group of talented people, and a plan and resources to grow the company. We had energy and we had a great process and tools to successful. What could go wrong?