A NEW YEAR’S CYBER RESOLUTION: LET’S START TALKING ABOUT THINGS THAT REALLY MATTER

Posted on January 3, 2022 at 11:51 am

By Larry Clinton, President and CEO, Internet Security Alliance I have to say I’m disappointed the language requiring more stringent timelines for reporting cyber events to the government didn’t make it into the National Defense Authorization Act (NDAA). I’m not disappointed because I have strong feelings one way or another about that provision – to […]


GUEST BLOG: U.S. Acts against Huawei and ZTE, Allies Disadvantaged in Replicating “Rip and Replace”

Posted on September 2, 2021 at 11:00 am

By Sarina Krantzler, ISA Research Associate “The greatest victory is that which requires no battle” – Sun Tzu, The Art of War In the previous discussion, China’s 14th Five-Year Plan was summarized to capture relevant aspects of dual circulation, the Digital Silk Road (DSR), and the Belt Road Initiative (BRI) that aim to advance China as […]


GUEST BLOG: China’s Digital Strategy Threatens U.S. National Security & Diplomatic Partnerships

Posted on August 31, 2021 at 11:00 am

By Sarina Krantzler, ISA Research Associate This post is the first of two blogs concerning China’s Digital Strategy. “If you know the enemy and know yourself, you need not fear the result of a hundred battles. If you know yourself but not the enemy, for every victory gained you will also suffer a defeat. If […]


CYBERSECURITY: STAKEHOLDERS OR PARTNERS? RETURN ON REPORTING?

Posted on August 30, 2021 at 11:47 am

This week the House Homeland Security Cyber Subcommittee will hold a hearing on one of the hottest legislative topics in the field entitled “Stakeholder Perspectives on the Cyber Incident Reporting for Critical Infrastructure Act of 2021” The witnesses will include representatives from IT, Telecommunications, and financial services industries -– all major players in the so-called, […]


ISA’s Clinton weighs in on need for cyber funding in legislation expanding broadband service

Posted on April 9, 2021 at 3:24 pm

Internet Security Alliance president Larry Clinton is adding his voice to those calling for including a robust cybersecurity program in upcoming infrastructure legislation expected to address expanded broadband access as well as services in other critical industries. “President Biden’s massive infrastructure proposal — dubbed infrastructure for the digital age — includes a wide variety of […]


Lawmakers moving on cyber incident-reporting bills; industry hopes to nudge discussion away from regulatory mandates

Posted on March 23, 2021 at 10:09 am

Members of Congress are moving toward a legislative push for mandatory cyber-incident reporting by critical infrastructure operators, while industry groups are beginning to shape their arguments against establishing such a regulatory requirement in response to the SolarWinds and Microsoft Exchange hacks. A source close to the House Homeland Security Committee told Inside Cybersecurity: “We’re in the […]


Internet Security Alliance, partners release consensus principles for boardroom cyber risk management

Posted on at 10:03 am

A trio of groups including the Internet Security Alliance has released a report offering “a cohesive, global, cross-border approach to cyber-risk governance” for corporate boards, with six principles that pull together consensus views developed by security and industry leaders in recent years. “Principles for Board Governance of Cyber Risk” was released today by ISA, the […]


Federal officials stress unprecedented levels of coordination as lawmakers continue probe of SolarWinds

Posted on March 18, 2021 at 10:12 am

Senators on the Homeland Security Committee took their turn probing the federal response to the SolarWinds hack at a hearing that featured CISA, OMB and FBI officials citing extensive interagency cooperation, while lawmakers pressed on the need for more high-level direction and for upgrading the government’s overall approach to cyber defense. “After the SolarWinds hack […]


Internet Security Alliance: CMMC fails to account for the economics of small-business cybersecurity

Posted on February 16, 2021 at 12:01 pm

The Pentagon’s Cybersecurity Maturity Model Certification program will fall short in securing the Defense Industrial Base because it fails to address underlying economic realities that limit how much small and mid-sized businesses can invest in cyber, according to the industry-based Internet Security Alliance. “However, it is sadly predictable that the CMMC, however much an improvement, […]


As holiday shopping season kicks in, cybersecurity group spotlights policy needs for securing retail sector

Posted on at 12:00 pm

Cyber vulnerabilities in the retail sector, always a hot topic during the holidays, require an examination of underlying economics and incentives that could drive improvements in retailers’ cybersecurity, according to an Internet Security Alliance assessment that tracks with the group’s prescription for shoring up cyber across critical infrastructure. “The retail sector is one of the […]