“FCW recently gathered a group of IT leaders to explore how their IT modernization efforts were holding up and where further adjustments were expected…”
“Although the risks that can lurk in the supply chain are definitely a concern, one official said, the SolarWinds exploit showed how legacy IT can too easily let attackers ‘laterally move across the enterprise.’
‘We’re still talking about that hard shell and the soft squishy interior, and that’s got to get fixed,’ the official said. ‘It scares me to death on some of the older systems that are out there and what could happen with those older systems that you can only put a hard shell around. Zero trust is not built in through the entire stack, and those applications are at risk.’
CIOs and chief information security officers were already well aware of those risks, the group agreed, but SolarWinds served to focus the attention of agencies’ senior-most leaders and provided an opportunity to obtain support for fundamental infrastructure modernization…”
“Some participants said their modernization plans had already evolved or at least taken on greater importance. The SolarWinds incident ‘heightened how we’re looking at our future modernization,’ one said. ‘If you move to a zero trust-architected network, you have to modernize your infrastructure. We’ve got to get off the old technologies.’
Additionally, several participants said, the cybersecurity argument was more likely to win funding and executive support than making the case for improved efficiency and future cost savings.
‘A lot of times it’s easier to say, “Well, it’s security-related,” so then all of a sudden that piques their interest and keeps them engaged,’ one said…” Read the full article here.
Source: A renewed push for secure modernization – By Troy K. Schneider, April 5, 2021. FCW.