Chapter 1 – The Economics of Cybersecurity: Advantage Attackers
Chapter 2 – Dangerous and Effective: China’s Digital Strategy
Chapter 3 – The Solar Winds of Change: The Threat of Systemic Cyber Risk
Chapter 4 – Outdated and Ineffective: Why Our Current Cybersecurity Programs Fail to Keep Us Safe
Chapter 5 – Reinventing Cybersecurity: A Strategic Partnership Approach
Chapter 6 – The Cybersecurity Policy We Need: Incentivize, Modernize, Economize
Chapter 7 – Health: Cybersecurity as a Core Element of Patient Care
Chapter 8 – Defense: Leveraging the Dual Economies of the Defense Industrial Base
Chapter 9 – Financial Services: Regulation Isn’t Enough
Chapter 10 – Energy: Protecting the Smart Grid
Chapter 11 – Retail: Serving Consumers and Keeping Them Secure
Chapter 12 – Telecommunications: Managing International Risk in a Post-COVID-19 World
Chapter 13 – Information Technology: Defining How to Govern IT
Anyone looking for a case study illustrating the speed of the evolving cyber threat need look no further than healthcare. The COVID-19 pandemic and rampant ransomware attacks shone a light on the cybersecurity threats facing the healthcare sector, as cybercriminals capitalized on the financial gain from stealing financial data and healthcare research. Despite being one of the first and most heavily regulated sectors for cybersecurity, the healthcare sector has remained one of the weakest sectors for cybersecurity. This chapter emphasizes that cybersecurity is a critical component of modern healthcare, and cybersecurity can pose additional risk to patients. This chapter recommends that cybersecurity investments be reclassified as an element of patient care within the medical loss ratio. It also calls for reduced regulation and increased incentives. For example, Meaningful Use requirements should be reduced or foregone entirely to allow for investment and use of health information exchanges to increase secure interoperability in the healthcare field. An incentive-focused regulatory approach would encourage more companies in the healthcare industry to make the investments necessary to protect information assets. With the right incentives, we drive good information security behavior today and continual good behavior going forward.
Combining Technology, Public Policy and Economics to Create a Sustainable System of Cybersecurity
| 703-907-7090
| admin@isalliance.org
| 2500 Wilson Blvd, #245
Arlington, Virginia 22201
USA
ISA provides cybersecurity expert testimony and thought leadership in government and serves as an expert witness to the press.