Tennessee’s cybersecurity officials play a low-key but important role
Last Sunday, the National Association of State Chief Information Security Officers came to Nashville, an event that normally flies under the media radar but plays an immensely important role in the security of American citizens.
This year the conference focused on areas like cybersecurity and malware, two issues vital to citizens of Tennessee and the greater United States.
Tennessee CIO Stephanie Dedmon understands that “[citizens] want to get to the services they need as quickly as possible on whatever device is easiest for them.”
This notion rings universally true for the American public, making the security of each of those devices ever more important for CIO’S across the country.
After all, more Americans use the internet in 2019 for sensitive information than ever before, from online banking and investments to medical records and home security.
As users transition to integrating all of their information into the internet ecosystem, the devices offered to consumers must ensure that personal data remains exactly that – personal.
Foreign hardware, namely that produced in countries opposed to American values, presents incredible risk to the citizens, police, hospitals, schools, and businesses using it for daily operations.
DOD has been slow to act
Chinese technology has been the most pressing and obvious example of compromised hardware integrating into American cyber infrastructure, with countless examples of data breaches, stolen American business intellectual property, and compromised national security.
This is because – unlike in democratic economies – Chinese companies are beholden by law to the Chinese government, including China’s military and intelligence priorities. As a result, the use of compromised Chinese technology in our sensitive networks creates exploitable security gaps.
The United States Department of Defense, heralded as the leader in identifying and addressing national cybersecurity threats, has been slow to take action against suspect Chinese hardware.
Huawei was identified as a threat in 2012, but it took leadership five years to take action. Thankfully, the Pentagon’s lagging response has finally increased its pace, with the Defense Department Inspector General recently exposing the purchase of Lenovo, Lexmark and Gopro equipment for military purposes in 2018. Each of these Chinese companies possesses ties to the Chinese Academy of Sciences and the Communist Party. By introducing these devices into government and personal networks users unknowingly compromise their data security.
State must keep networks safe
However, this threat is not confined to the Federal Government, and it is imperative that state leaders also take action to protect the information of its citizens – which is why Tennessee CIO Stephanie Dedmon and her colleagues in Nashville play such an important role. For example, Chinese technology giant Lenovo boasts its technology is currently used in 900 state and local governments, as well as 70 military and civilian agencies.
Chinese telecommunications giant Huawei inundates rural wireless networks, with 25% of rural carriers using equipment from the manufacturer as of 2018.
Lexmark, listed as a company in need of greater attention from DOD officials in the 2019 IG report listed above, even has its own purchasing page on the General Services Administration Advantage! Site, allowing government employees to purchase the Chinese-made devices with just a few clicks of the mouse.
Chinese technology and its integration into American networks is an alarming trend that must be addressed, and no audience can more effectively monitor this threat than state Chief Information Officers, who direct the technology for state agencies, including police, education, and welfare.
These networks are high-value targets for foreign governments and adversaries. By ensuring the devices housed on state networks are procured from secure, thoroughly vetted supply chains state and local officials can proactively protect the information of citizens.
Roslyn Layton, PH.D., is co-founder of Chinatechthreat.com.