Since taking office, the Obama administration has worked to make cyber security a touchstone of its tenure. In its first term, the detailed Cyberspace Policy Review, an audit of cyber defense processes across government agencies, was commissioned. Then, based on those recommendations, it launched a complete plan for tighter security across federal agencies and for the entire country. A summary of this plan, named the Comprehensive National Cybersecurity Initiative (CNCI), is available online for public viewing.
Now in 2015, seven years after the creation of the CNCI, widespread concern over cyber security has intensified. High-profile, catastrophic incidents like the Target breach have captured national headlines. And ongoing advanced persistent threats have emphasized how far the private and public sectors are lagging behind cyber criminals.
To remedy these deficiencies, the White House has begun outlining proposals for new legislation to close the gap between malicious hackers and the organizations defending against them. Announced in January 2015, these proposed efforts specify three key areas for improvement: information sharing between private organizations and federal government, law enforcement on cyber crime, and reporting standards in the event of a data breach.
In an executive order released on February 13, the administration further defined the first of these efforts: focused improvement of information sharing between private and public sectors. In short, this legislation aims to encourage private organizations to share cyber risk data with the federal government, provide more effective mechanisms for sharing data, and protect the privacy of individuals whose personal information may be a part of this data.
What does all of this legislation have to do with your organization? Well, with some added efficiencies in your cyber security processes, it offers an opportunity to leverage the strength of the federal government to help defend against cyber criminals. For companies that have yet to implement efficient data breach response processes, it could mean stiffer penalties and painful consequences in the event of a security incident.
However, the administration’s cyber security initiatives can work in your favor, rather than being a burden. Lunarline’s proprietary products, including our Vulnerability Scan Converter, can help your security team operate more efficiently, allowing you to benefit from new information sharing initiatives. Additionally, our data breach response services better prepares companies for incidents, putting you ahead of federal standards and taking away the worry.