Washington Can Help States Face Cybersecurity Threats by Harmonizing Regulations

Posted on May 15, 2019 at 12:52 pm

by Dan Lips The National Governors Association is meeting Louisiana this week for its biannual cybersecurity summit. An important topic of consideration is how Washington can help state governments by harmonizing regulations. Doing so would let states focus their attention on confronting worsening cybersecurity threats, rather than answering federal auditors. “On any given day, the […]

Congress Needs Training in Cybersecurity — The Right Kind of Training

Posted on May 14, 2019 at 10:17 am

by Larry Clinton   Kudos to Representatives Kathleen Rice (D) and John Katko (R) for their bipartisan legislation requiring Members of Congress to receive training in cybersecurity. Give congressional representatives an IT tool and they can secure the nation for a day — maybe. Teach Congress how to truly understand and manage cyber risk and we […]

U.S.-Japanese Cyber Collaboration Needs to Include the Private Sector

Posted on May 9, 2019 at 12:26 pm

by Larry Clinton While much of the attention on President Trump’s upcoming visit to Japan will focus on North Korean nuclear issues, a critical, if under-reported, element of the visit will be to bolster U.S.-Japanese cyber defenses. In a speech to the Hudson Institute last week, U.S. Ambassador to Japan William Hagerty acknowledged the importance […]

Annual FBI Internet Crime Report Finds $2.7 Billion in Losses in 2018

Posted on April 29, 2019 at 2:41 pm

Internet-enabled crime was responsible for $2.7 billion in losses in 2018, according to the FBI’s annual Internet Crime Report. The data confirms industry concerns about growing cybersecurity threats. The FBI’s Internet Crime Complaint Center (IC3) reported an increase in the number of complaints from 301,580 in 2017 to 351,000 in 2018, or more than 900 […]

Should we start regulating cybersecurity in the supply chain? Not so fast.

Posted on April 26, 2019 at 11:30 am

Supply chain has become the hot topic in cybersecurity inside the Beltway in recent months – and for good reason. The British Standards Institution just this week released a new report on the supply chain identifying cybersecurity as one of the greatest security threats within the supply chain. The federal government has also taken notice to […]

ISA Top 2018 Highlights

Posted on January 28, 2019 at 9:00 am

ISA appointed industry co-chair (DHS is government co-chair) of the Policy Leadership Working Group charged by DHS Asst. Secretary for Cyber Security Jeanette Manfra with articulating the details of a Collective Cybersecurity Defense Model the Trump Administration wants to promote for cybersecurity. Policy Leadership Working Group produces a joint government-industry white paper defining the Collective […]

We need a new approach to cyber risk assessment

Posted on September 21, 2018 at 12:47 pm

“Garbage in, garbage out.” For years, cyber risk assessments have often revolved around checklists of standards and practices that IT professionals can use to check off what they’ve done, but that model is insufficient, producing results that are hindering cybersecurity. ISA President Larry Clinton, at the Command and Control conference on Friday, September 21, called […]

At DEFCON, DHS Gets it Right on Cyber – We Need to Rethink Incentives

Posted on August 14, 2018 at 10:09 am

When DHS Assistant Secretary for Cyber Security Jeanette Manfra addressed the hackers at the annual Las Vegas showcase for modern wizardry, she didn’t focus on standards and bots. She talked about how digitization changes everything and the need to look at cybersecurity through an economic lens. She got it exactly right. “For the first time […]

Happy New Year: We Need a New Approach to Cybersecurity

Posted on January 2, 2018 at 11:05 am

By Larry Clinton   We all know we are losing the battle to secure cyber space – badly. Maybe our New Year’s resolution ought to be to recognize this fact and come up with a new approach to the problem. The old ones don’t seem to be working.   Specifically, we should consider moving away […]

Is it Time to Sunset Cybersecurity Awareness Month?

Posted on October 2, 2017 at 11:28 am

Sunsetting Cyber Awareness Month.blog.1017October 2, 2017 By Larry Clinton Raise your hand if you know anyone who is unaware that we have a cybersecurity problem. In a field where we are often desperate for any sign of success, I think we can spike the football on the issue of cybersecurity awareness. Understanding the cybersecurity problem? […]