The U.S. Computer Emergency Readiness Team has provided a list of strategies it believes public and private sector organizations should adopt to minimize cybersecurity risks to their information technology systems.Noah Kunin, director of delivery architecture and infrastructure services at the General Services Administration‘s 18F organization, said in a blog article published Wednesday GSA plans to help agencies implement US-CERT’s suggested cybersecurity methods through the issuance of guidance documents.
US-CERT recommended that organizations two-factor authentication and application directory whitelisting technologies to prevent unauthorized activity in networks.
Organizations should also limit the use of privileged access accounts, maintain network segmentation and monitor network trust relationships, according to US-CERT.
Kunin added 18F seeks to help agencies identify focus areas for cybersecurity after they adopt the recommendations.
