Industry executives interviewed at Black Hat USA cybersecurity conference in Las Vegas said government agencies need to have more visibility into their networks in order to protect their infrastructure from cyber threats, Fifth Domain reported Friday.
â€œOne of the needs on a large scale is to really understand the elements of the stack that are needed in order to perform full-scale cyber defense,â€ Abdul Rahman, chief scientist at Fidelis Cybersecurity, told the publication. â€œTheir sensors donâ€™t give them good enough visibility â€¦ into where the problems are in their network,â€ he said. â€œYou donâ€™t know what you donâ€™t know because you donâ€™t know your terrain.â€
Other industry experts called on agencies to implement vulnerability disclosure initiatives.
â€œImplementation of a vulnerability disclosure policy across the entire federal government literally as a starting point for the conversation around the fact that they are serving the public,â€ said Casey Ellis, founder and chief technology officer of Bugcrowd. â€œThe public is connected to the internet and if they see something, they should be able to say something,â€ he added.
â€œThey should mandate vulnerability disclosure programs for every federal agency, for every publicly listed company, and every company that holds consumer information,â€ Marten Mickos, CEO of HackerOne.