Qualys’ Billy Rios: Procurement Process Key to Stopping Cyber Attacks on Federal Facilities

CyberCrimeKeyboardBilly Rios, director of threat intelligence at Qualys, has called for increased effort to protect private industry and federal industrial control systems over existing security regulations in place, FCW reported Friday.

Mark Rockwell writes that a paper Rios presented during the Black Hat cybersecurity convention in August revealed backdoors, hard-coded credentials and other security flaws in devices used by the Transportation Security Administration.

Rios told FCW that complex building control systems could pose security issues for the Internet of Things.

He called for greater involvement of contracting officers in procuring heating, ventilation and air conditioning systems and mobile applications in order to prevent back-door attacks on federal buildings, according to the report.

Rios also told the publication that the Federal Information Security Management Act alone is inadequate to address emerging threats.

He said that he has been working with the Department of Homeland Security to respond to those kinds of cyber attacks, FCW reports.

You may also be interested in...

David McKeown

David McKeown: DOD Eyes Creation of Zero-Trust-Focused Portfolio Office

David McKeown, the Department of Defense's (DOD) equivalent of a chief information security officer, said DOD is looking to establish a portfolio management office that specializes in zero-trust cybersecurity. The office's creation would help DOD centralize and manage efforts to implement a zero-trust architecture, which strictly imposes requirements before one is able to access the defense network.

Leave a Reply

Your email address will not be published. Required fields are marked *