The United States Patent and Trademark Office plans to hold its first partnership meeting with the cybersecurity and network security community on Nov. 14 in Silicon Valley, the agency announced this week.
The Pentagon has further delayed the development of network breach-reporting regulations for cleared defense contractors amid continuing deliberations on fundamental questions.
All Sectors >>
Business groups and companies commenting on the government's framework of cybersecurity standards offered extensive details on their efforts to promote the framework, assurances that they are meeting the goals of bolstering cybersecurity in various ways, and questions on broader issues such as the need for incentives and more discussion on the economics of the issue.
The third week of National Cybersecurity Awareness Month is crowded with events from government, private sector, and industry groups, expanding beyond the designated topic of the week — cybersecurity for small businesses — and examining issues such as Estonian cybersecurity initiatives, Army information technology, and business cybersecurity.
Arne Schonbohm, who leads an industry cybersecurity group in Germany, wraps up a tour of the United States this week and he has a message for governments on both continents: Articulate how you will help the private sector defend its networks in the face of highly advanced attacks from nation-states.
The insurance industry's call for the Securities and Exchange Commission to regulate the private sector's management of cyber risks has prompted SEC Commissioner Luis Aguilar to again urge the agency to "holistically" review such risks and consider its role in helping organizations address them.
Attributing cyber attacks to their source is increasingly feasible, according to a leading cybersecurity practicioner, but public revelations about Chinese and other nations' actions is having little deterrence effect.
Two dozen comments – from groups ranging from privacy advocates to IT contractors and researchers – were submitted in response to a White House request for information on "vital privacy objectives," including cybersecurity challenges, which could inform a National Privacy Research Strategy.
The healthcare sector should emulate other critical infrastructure sectors on cybersecurity, but should also nail down unique aspects to healthcare and medical device cybersecurity, government and industry officials said Wednesday.
Must-read coverage of industry and other comments to NIST on its framework of cybersecurity standards. The comments will inform discussions at an upcoming NIST workshop in Tampa, FL on improving cybersecurity for critical infrastructure and could shape possible revisions to the framework of standards.
The Pentagon's Defense Information Systems Agency and U.S. Cyber Command will soon have a joint headquarters to manage all defense networks, according to an official from DISA who advised industry to be ready to support the effort.
The National Institute of Standards and Technology will host a privacy lecture next week by Daniel Solove, a law professor whose work sparked debate on privacy harms at the agency's April workshop on privacy engineering.
Cybersecurity considerations need to be taken into account throughout the lifecycle of medical devices, a Food and Drug Administration official said Tuesday.
More News >>
These Oct. 10, 2014 comments from the Healthcare Information and Management Systems Society on the National Institute of Standards and Technology's framework of cybersecurity standards states that awareness is modest in the healthcare space. HIMSS writes that cybersecurity efforts have been primarily focused on compliance with the Health Insurance Portability and Accountability Act. Compliance "does not necessarily mean that information will be kept safe and secure," the group says. HIMSS calls for a practical and detailed guidance on transitioning from "compliance only" activities to security as a goal in itself.