Light Dark
September 11, 2024 By Mark Stone 4 min read
News

The Department of Homeland Security (DHS) has awarded $18.2 million in grants through the Tribal Cybersecurity Grant Program to boost cybersecurity defenses among Native American Indian Tribes. The program takes a big step in addressing the unique digital threats faced by tribal communities — a dedicated effort to improve cybersecurity infrastructure across these regions.

The $18.2 million grant is just one component of DHS’s broader strategy to enhance national cybersecurity. Administered by the Federal Emergency Management Agency (FEMA) in partnership with the Cybersecurity and Infrastructure Security Agency (CISA), the goal of the Tribal Cybersecurity Grant Program is to provide tribes with the necessary tools to assess cybersecurity risks, implement effective solutions and strengthen their overall cyber defenses.

Distributing $18.2 million: Expectations and guidelines

The grant monies come with specific expectations and guidelines for any tribe receiving the grants, which include:

Conduct risk assessments: Identify and assess potential cybersecurity threats and vulnerabilities for risks within networks and infrastructure.

Implement cybersecurity solutions: Use the funds to deploy advanced cybersecurity technologies and solutions tailored to specific needs and operations.

Enhance cyber defenses: Improve cybersecurity postures by developing robust defense mechanisms against cyber threats.

Training and awareness: Invest in cybersecurity training and awareness programs to educate tribal members and IT staff about best practices, emerging threats and basic security principles.

When tribal communities adhere to these guidelines, they are in a better position to build a more resilient cybersecurity framework and protect their digital assets and critical data from malicious actors or any internal misconfigurations.

A historical perspective on federal policy

While this $18.2 million grant is a milestone for the country, it’s important to look back at the historical context of federal support for Native American tribes.

Throughout the 19th and 20th centuries, the federal government’s policies swung between assimilation and support — an inconsistency that created a turbulent relationship between Native Americans and the federal government.

Many initiatives and policies aimed at supporting Native American communities were underfunded, which hindered the effectiveness of programs initiated by the Bureau of Indian Affairs (BIA) and other federal entities.

Continuous lack of adequate financial support from the federal government hampered efforts to improve conditions on reservations, including education and health services.

This background is important to understand the complexities and challenges in the relationship between Native Americans and the federal government, particularly in the context of funding and support. Federal investments in tribal nations have been sporadic and frankly insufficient to meet the growing technological needs, which has understandably created long-lasting impacts on Native American communities.

In recent years, however, there has been a tangible shift towards more substantial and targeted funding.

Recent federal efforts in cybersecurity

American Rescue Plan

One notable example of recent federal investment is the American Rescue Plan, which provided $32 billion to support tribal governments. The White House press release describes this plan as the “largest single financial assistance investment to tribal governments in history, which includes investments towards expanding healthcare, access to temporary housing, assistance and supportive services to survivors of domestic and dating violence, as well as supplemental funding for the StrongHearts Native Helpline, and additional funding for services for sexual assault survivors.” It also included funding for IT and cybersecurity to demonstrate the federal government’s commitment to enhancing tribal infrastructure.

$400 million was allocated to the USDA’s ReConnect program, which was created to deploy broadband to unserved areas, particularly tribal regions. The initiative aims to bridge the digital divide and ensure tribal communities have access to high-speed internet, which is crucial for a robust cybersecurity posture.

Biden administration’s efforts

The Biden administration has put forth a concerted effort to address the unique challenges faced by tribal communities. The administration’s budget proposals have consistently included provisions for improving IT infrastructure and cybersecurity among Native American tribes. The investments reflect a broader recognition of the importance of digital security in protecting tribal sovereignty and providing equal access to technological resources.

Past federal efforts in cybersecurity

Obama administration

During the Obama administration, the focus on cybersecurity began to gain traction. Initiatives such as the National Cybersecurity Protection System (NCPS) were established to provide federal support to various sectors, including tribal governments. While these programs were not exclusively geared to tribal nations, they laid the groundwork for future efforts to include tribal nations in national cybersecurity strategies.

Trump administration

In 2017, the Trump administration signed Executive Order 13800, “Strengthening the Cybersecurity of Federal Networks and Critical Infrastructure,” which focused on modernizing federal IT infrastructure and collaborating with state, local and private sector partners to secure critical infrastructure. While the order didn’t directly address tribal cybersecurity efforts, it was a step in the right direction toward the Tribal Security Grant Program.

Building blocks for success

To ensure the program succeeds, consistent monitoring of the implementation and impact of the grants is key. Regular assessments, great communication and feedback loops can help identify areas for improvement to ensure that the funds are being used effectively. Most importantly, building partnerships and relationships between tribal governments, federal agencies and private sector entities will go a long way toward improving the overall cybersecurity landscape.

Federal support for tribal cybersecurity is critical, but it must also come with technical assistance and resources to help tribes navigate the complex cybersecurity landscape. By building on the foundation established by the Tribal Cybersecurity Grant Program, the federal government can continue to support the digital sovereignty and security of Native American tribes.

The DHS’s $18.2 million grant to Native American tribes is a big step towards enhancing tribal cybersecurity. But by examining the historical context of federal support and the evolving landscape of IT and cybersecurity investments, it’s clear that this grant is very important as a milestone and a launching point for future efforts. As tribal communities continue to navigate the complexities of an evolving threat landscape, consistent and continual federal support is crucial.

Ultimately, this program, rooted in a collaborative approach between FEMA and CISA, will hopefully provide the necessary tools and resources to strengthen tribal cyber defenses.

 |  |  |  |  |  |  | 
Mark Stone

More from News
September 16, 2024

The rising threat of cyberattacks in the restaurant industry

2 min read - The restaurant industry has been hit with a rising number of cyberattacks in the last two years, with major fast-food chains as the primary targets. Here’s a summary of the kinds of attacks to strike this industry and what happened afterward. Data breaches have been a significant issue, with several large restaurant chains experiencing incidents that compromised the sensitive information of both employees and customers. In one notable case, a breach affected 183,000 people, exposing names, Social Security numbers, driver's…

September 9, 2024

ONCD releases request for information: Open-source software security

3 min read - Open-source software is a collective partnership across the development community that requires both private and public buy-in. However, securing open-source software can be tricky. With so many different people working on the coding, security measures are often overlooked, increasing the chances that a vulnerability will fall through the cracks and be exploited. The Open-Source Software Security Initiative (OS31) aims to provide governance over open-source security processes. After the Log4Shell vulnerability, securing open-source software became a top priority for the federal…

September 4, 2024

3,000 “ghost accounts” on GitHub spreading malware

3 min read - In the past, cyber criminals directly distributed malware on GitHub using encrypted scripting code or malicious executables. But now threat actors are turning to a new tactic to spread malware: creating ghost accounts. A highly effective malware campaign Check Point Research recently exposed a new distribution-as-a-service (DaaS) network, referred to as the Stargazers Ghost Network, that has been spreading malware on GitHub for at least a year. Because the accounts perform typical activities as well, users did not realize that…

Topic updates

 Get email updates and stay ahead of the latest threats to the security landscape, thought leadership and research.
Subscribe today
© 2024 IBM Contact Privacy Terms of use Accessibility Cookie Preferences
Sponsored by si-icon-eightbarfeature