Editor’s Note: The CircleID article, Why OIRA Needs to Coordinate Federal Cyber Security Regulation is available here.
From: Mercatus Center | George Mason University
The federal government is trying to ramp up its involvement in private cybersecurity through a variety executive orders and legislative proposals. So far in 2015, the White House has issued executive orders authorizing targeted sanctions against those deemed to be “cyberspace threats,” encouraging private entities to share sensitive data with federal offices, and creating a new Cyber Threat Intelligence Integration Center (CTIIC) to coordinate this “information sharing” under the Director of National Intelligence (DNI). Meanwhile, Congress is refining its controversial Cybersecurity Information Sharing Act of 2015 (CISA), which would legislatively encourage such information sharing and provide legal immunity to private corporations that share customer data with federal offices.
A wide range of federal offices already carries out many of these proposed cybersecurity initiatives and have struggled to properly implement them effectively. If these federal cybersecurity offices have failed to promote better cybersecurity outcomes within their own systems, it is unclear that these new federal initiatives will work when applied to the larger and less familiar information security systems of the entire nation.
Leave a Reply