Todd Helfrich, director of the federal business at ThreatStream has created a checklist of information technology measures he believes the U.S. government agencies should include in their cybersecurity plans.
Helfrich wrote in a piece published Friday on GCN that agencies need to implement cyber threat intelligence tools to help them identify and automate responses to computer security risks.
He believes that agencies can keep pace with technological change in cyberspace if they adopt an agile contracting strategy.
Agencies should also employ a two-factor authentication system and monitor privileged users, according to Helfrich.
“Privileged-user monitoring, when combined with two-factor authentication and encryption, reduces the attack surface” he stated.
He also recommended that the federal government provide incentives and tools to retain public-sector cyber professionals.