Next »

government affairs

blog post
The growing and nearly daily occurrences of cybersecurity attacks against both private and public sector entities that service the every- day lives of american citizens continues to boost the incredible importance of addressing cybersecurity issues exactly. Members of Congress feel that frustration in regards to the absence of movement on legislation because they seek to balance security with privacy. Members of the home and Senate carry on and interact with each other to find ways to pass cybersecurity bills within the lame duck session. Member retirements in key leadership roles, for instance with Chairman Rockefeller from the Senate and Chairman Rogers in the home, could spur action, because they face a crowded calendar of “must- do” bills. With the odds against anything being qualified this coming year, anticipate that enactment ofcybersecurity legislation will again be described as a top issue for the 114th Congress. Also expect continued executive action by way of the President as a means to move the ball forward on this issue while the Congress is constantly go through accomplishing this. With few exceptions, the main element congressional players involved in cybersecurity- related initiatives within the last few Congress will the same and will provide some continuity for any private and public sector participants have been closely following process.

Efforts centered on increased cyber information sharing and associated liability protections will keep inside chambers, hoping that leading Members inside the House and Senate will again introduce bills within the various committees. With a brand new chairman within the helm of the House Permanent Select Committee on Intelligence, the approach pursued with the leadership in the committee may vary given private sector privacy concerns and continued White House opposition towards the proposed Cyber Intelligence Sharing and Protection Act (CISPA). The Senate has moved on with information sharing legislation in a bipartisan fashion before. Anticipate that approach will continue.

Anticipate introduction of bills from the 114th Congress the same as those we percieve prior to now, such as those being focused on the requirement to strengthen the capabilities of the U.S. Department of Homeland Security (DHS) in cyber-maintaining a civilian agency as a partner for the private sector. Others should include an emphasis on codifying the mandate of: the nation's Defense and National Security and strengthening the hiring abilities of DHS to construct tweaking acybersecurity workforce, increasing investments in cybersecurity research and development, and updating the government Information Security Modernization Act (FISMA).

The annual appropriations bills may even remain a car or truck for movingcybersecurity-related provisions, including language that restricts purchases from specifically targeted Chinese entities according to logistics security concerns that were in the House’s FY 2015 Commerce-Justice-Science appropriations bill.

After the day, it is clear that the Obama Administration continually use its executive authority to address Defense and National Security concerns and definately will remain actively engaged in the implementation of your February 2013 Cybersecurity Executive Order (EO) 13636 and Presidential Policy Directive (PPD-21). The discharge of the Cybersecurity Framework in 2014, almost exactly a year from the issuance of EO 13636, as well as the recently issued EO on data security, signals that other EOs may be from the works and will be closely watched.

Since the issuance of EO 13636, virtually every department and independent agency has had an active role on cybersecurity issues within the last nearly couple of years as concerns grow within the impact of cybersecurity attacks around the sixteen Critical Infrastructure (CI) sectors defi while in the EO. The Registration (SEC), as an example, has started spot checks of companies to be certain adequate fillings on cyber risk. The government Trade Commission (FTC) has filed 53 lawsuits against hotels and retailers utilizing its consumer protection authorities, and is also seeking greater enforcement and rulemakingpowers from Congress. The federal government Communications Commission (FCC) has begun eff to consider methods to address the lack of existing cybersecurity regulations on the communications sector. It really is reliable advice there will probably be a progressively more activist oversight role by all of these agencies within the last few 24 months from the Federal government.

Within the international front, concerns in a very post-Snowden world have tied together the bilateral and multilateral negotiations on cybersecurity and privacy. Nations is taking care of their own cybersecurity regime within the Network Systems (NIS) Cybersecurity Directive combined with European Program for Critical Infrastructure Protection. Its northern border Atlantic Treaty Organization (NATO) recently issued an assertion about rules of engagement on a cyber-attack. The Russian and Chinese governments recently reaffirmed the most crucial of national sovereignty online. Expect more discussion inside the international realm on cybersecurity and privacy issues as governments focus more attention about the balance needed between security and privacy protections.

Posted Jan 25, 2015 at 1:59am