Disir
Platinum Member
- Sep 30, 2011
- 28,003
- 9,610
- 910
The spate of recent ransomware attacks on federal contractors and operators of critical infrastructure, culminating in the attack on Colonial Pipeline in May, has built momentum for new federal laws and regulations to require disclosure of breaches as well as mandatory cybersecurity standards.
But writing such laws and regulations in a timely manner and ensuring they are finely tailored is likely to pose a challenge involving multiple federal agencies, Congress and the new national cyber director.
In the aftermath of several high-profile cyberattacks, “I do think you’re seeing some recognition that business as usual and the status quo just isn’t going to cut it,” said Frank Cilluffo, director of Auburn University’s Charles D. McCrary Institute for Cyber and Critical Infrastructure Security and a member of the congressional Cyberspace Solarium Commission.
That looks like it's going to be a lot like herding cats. Simply getting to an agreement on standards is going to be tough.
But writing such laws and regulations in a timely manner and ensuring they are finely tailored is likely to pose a challenge involving multiple federal agencies, Congress and the new national cyber director.
In the aftermath of several high-profile cyberattacks, “I do think you’re seeing some recognition that business as usual and the status quo just isn’t going to cut it,” said Frank Cilluffo, director of Auburn University’s Charles D. McCrary Institute for Cyber and Critical Infrastructure Security and a member of the congressional Cyberspace Solarium Commission.
Standardizing Cybersecurity Regulations Proves Difficult
After several high-profile cyber attacks, fed security officials hope to increase cybersecurity protocols to prevent further attacks. But establishing regulations that are effective and timely isn’t easy.
www.governing.com
That looks like it's going to be a lot like herding cats. Simply getting to an agreement on standards is going to be tough.