The federal government lacks the expertise to mandate effective cybersecurity requirements for industry, according to Internet Security Alliance leader Larry Clinton, who says failures to secure the government’s own systems reveal the need for a major readjustment in thinking about cyber policy. “[W]e can add government to the list of sectors that are highly regulated […]
• The COVID-19 pandemic has opened more opportunities for cyberattacks. • Not enough board members understand the threat to their business. • The World Economic Forum, PwC, NACD and ISA are partnering to define key principles of good cybersecurity governance . In 2020, malevolent actors took advantage of the pandemic. The rush to digital-first arrangements […]
The foundational assumption of the expert agency regulatory model is that government knows what to do; all that is needed is to compel a recalcitrant private sector to follow government mandates. There is no evidence that government has attained that degree of expertise in cybersecurity. In fact, the data suggest the opposite.