ISA has a new daily cybersecurity blog — check it out here: https://isalliance.org/daily-security-blog/

ISA Press Release (November 19, 2020)

The Internet Security Alliance announced a collaboration today with The World Economic Forum (the Forum), and the National Association of Corporate Directors (NACD), to provide new guidance for directors to effectively oversee cyber risk for their organizations. The three organizations will begin the collaboration by developing a set of principles that boards of directors can use to assess the cyber-risk management processes their organizations need to follow. The new principles will be an update on the efforts that the Forum, NACD, and ISA have undertaken over the past several years, designed to meet rapid changes in the cybersecurity landscape. Once the new global principles are established, the collaborators will embark on determining how best to measure security outcomes to address the ever-evolving cyber threat.

December 10, 2020 – Larry Clinton will participate in a panel discussion:

Reforming the Economy of Cybersecurity to Ensure a Sustainable and Secure Security Management System

Larry Clinton is a panelist at the AI Virtual Summit – December 10, 2020.
Registe here:  https://registration.gesevent.com/survey/1we81tln6yhfr

Larry Clinton DISCUSSION TOPIC:  The economics of cybersecurity favours the attackers because cyberattacks are relatively cheap and easy to access. This is an imbalance among economic incentives that certain technologies and business practises, which have driven business growth, also undermine cybersecurity.

AI is a critical element in that. Whilst AI is driving new economic value for businesses, it has opened up more vulnerabilities in the systems. Unlike traditional cyberattacks that are caused by “bugs” or human mistakes in code, AI attacks are enabled by inherent limitations in the underlying AI algorithms that currently cannot be fixed. Policymakers need to recognise the problem, safeguard not only economically valuable data but the confidence in digital systems.