If you're like most people, when you think about a museum, you think about relics of the past. Well, not so fast says the International Spy Museum. Although relics of the spying past are abundant, Matt Golueke visited this weekend and was amazed by the cybersecurity exhibits.
And, while many security practitioners still believe cybersecurity to be the IT department's problem to deal with, the reality is that it is everyone's problem at every organization. Here's a short list of considerations when it comes to adhering to cybersecurity policies at your organization:
- Physical security needs to keep bad actors away from sensitive areas, including technology rooms and IT closets.
- Physical security professionals need to purchase and deploy only security devices that are hardened against cyber vulnerabilities.
- IT/cyber departments need to ensure that other stakeholder departments in the organization adhere to strict policies regarding purchasing of electronics, including adoption of secure devices only - see NDAA policies information.
- An NDAA-compliant purchasing policy is good policy, not just for the government.
- Maintenance agreements between end users and integrators are highly recommended to maintain and ensure edge device firmware, workstation computer software, storage and server appliance software systems are updated regularly and as recommended by manufacturers of each device on the network.
- Bad actors are likely not interested in hacking a security camera system to get to the recorded or live video, rather, they want to use inferior and improperly programmed cameras, intercoms, and other vulnerable devices to gain access to the primary target: the organization's data and information.
- Cameras, intercom stations, and other security devices are available with advanced cybersecurity features built into their firmware, be sure your integrator knows how to implement them properly and in accordance with the organization's mandates.
- Architects, engineers, and consultants should be aware of cyber-secure security device options for their clients when it comes to cameras and other devices with onboard cybersecurity capabilities that are NDAA compliant.
In this video, Rick Bennett joins David Brent, Senior Cyber/Data Security Technical Instructor at Bosch Security and Safety Systems, to briefly discuss the state of cyber security threats and how Bosch has, is, and will be addressing key topics like Zero Trust, 802.1x, certificates, TLS 1.x, and more...
Want to learn more? Watch David Brent's cybersecurity presentation from the Security Technology Forum here >>
Interested in NDAA-compliant, cyber-secure security solutions for your organization?
Contact us for security system design and demonstration assistance >>
