Summary
Andrew Garbarino, a member of the U.S. House Committee on Homeland Security, has reached out to the Department of Homeland Security (DHS) regarding the imminent shutdown of the Mobile App Vetting (MAV) program. Garbarino, who serves as chairman of the Subcommittee on Cybersecurity and Infrastructure Protection, is seeking details on how this termination may affect the Cybersecurity and Infrastructure Security Agency (CISA)’s role as the Sector Risk Management Agency (SRMA) for the communications sector.
In a letter to DHS Secretary Kristi Noem, he expressed concerns that the program is crucial for assessing vulnerabilities in mobile devices used by Federal Civilian Executive Branch (FCEB) agencies, especially following high-profile cyber intrusions linked to China. The letter underscores the importance of mobile device security in the current landscape, suggesting that shutting down the MAV program could leave a significant gap in cybersecurity measures for government employees.
Garbarino is now calling for a briefing on CISA’s strategy for improving its SRMA role, particularly in light of the MAV program’s termination and outlining the expected updates to the Sector-Specific Plan that hasn’t been revised since 2015.
Key Points
- Garbarino has formally questioned DHS about the MAV program shutdown and its implications for FCEB agencies.
- The MAV program provides essential security assessments for government-developed and third-party apps used on government devices.
- Concerns have been raised regarding the potential increase in vulnerability to cyber threats following the program’s termination.
- Garbarino emphasised the need for CISA to enhance its role and update its strategies in light of the evolving cybersecurity landscape.
- The briefing will cover a cost analysis of the MAV program and its effectiveness in mitigating risks for federal agencies.
Why should I read this?
If cybersecurity keeps you up at night (and it should), this article is a must-read. With major shifts in U.S. cybersecurity strategy on the table, understanding the implications of terminating key programs like MAV is crucial. Garbarino’s proactive stance underlines the urgency of ensuring our digital infrastructures are protected—especially in today’s world where threats are becoming increasingly sophisticated.