June 2020 ISA Monthly Highlights
- At the request of ISA, Cyberspace Solarium Commission Co-Chair Jim Langevin incorporated language on assessing cost-effectiveness of government cybersecurity programs in his legislation establishing a National Cyber Director at the White House. ISA was included in the Congressman’s press release announcing the new legislation, which is expected to be included in the upcoming defense reauthorization bill.
- The Cyberspace Solarium Commission issued new cybersecurity recommendations in response to the COVID-19 pandemic, including many ISA-backed recommendations. These include: Establishing incentives to encourage adoption of secure technologies, developing metrics to understand the cost-effectiveness of cybersecurity controls, strengthening cyber law enforcement and DHS CISA cybersecurity programs, bolstering the cybersecurity workforce, and augmenting public-private partnerships, including the modelling of systemic cyber risk.
- ISA was appointed to the committee charged with updating the National Infrastructure Protection Plan.
- ISA expands its partnership with the World Economic Forum and the National Association of Corporate Directors on measuring the effectiveness of board oversight of cybersecurity. This expanded partnership includes joint researches to assess how members of boards themselves understand consensus cyber-risk oversight principles and how they are using them within their current oversight processes. This will be conducted through NACD’s annual survey of boards of directors.
- ISA board members, in collaboration with ISA staff and interns, draft first chapters of an updated Cybersecurity Social Contract book to be published under Georgetown University Press.
- ISA President Larry Clinton leads course on cybersecurity for management during the Wharton School’s virtual Stonier Executive Education Program.
- ISA Co-Chairs the IT Sector Coordinating Council’s Pandemic Recovery Working Group, integrating provisions on cybersecurity into the working group’s charter. ISA was able to include provisions on promoting cyber hygiene, developing effective incentives, and establishing effective governance and management practices for cybersecurity. These recommendations were then incorporated into the Cross-Sector Pandemic Recovery Task Force’s charter and Return to Work guidelines.
- ISA and the National Association of State Chief Information Officers pen a joint op-ed on streamlining of federal cybersecurity regulation. This op-ed is currently being shopped around with major media outlets with targeted publication coordinated with the release of a letter by the Senate Homeland Security and Governmental Affairs Committee to the Office of Management and Budget on the same issue.