— Hearings on critical infrastructure security: Andrew Howell, a cyber industry lobbyist at Monument Advocacy, told MC that he’s eager to see whether lawmakers decide to review the results from the administration’s three 90-day “sprints” for the electric, gas and water sectors to test the resiliency of their cybersecurity — especially given researchers’ discovery a couple of weeks ago of the PIPEDREAM malware , which is designed to target vulnerable critical infrastructure.
Howell, who is also the executive director of the recently formed trade association Operational Technology Cybersecurity Coalition, said he’s pushing for lawmakers to hold hearings on how the sprints went, which could inspire further discussions about any money and staffing needs at the agencies overseeing various critical infrastructure sectors and any further mandates lawmakers might need to consider.
“It seems like an appropriate time for Congress and the executive branch to take a step back and evaluate what’s happened, what’s worked and what needs improvement,” Howell said.
Read the full newsletter here: https://www.politico.com/newsletters/weekly-cybersecurity/2022/04/25/congress-returns-to-a-long-cyber-to-do-list-00027412