Saturday, October 25, 2014

Treasury advisory panel to meet on cybersecurity insurance

A Treasury Department advisory panel will meet next month to examine cybersecurity insurance and the federal framework of cybersecurity standards.


FCC's cybersecurity working group sets deadline for initial reports

The Federal Communications Commission's closely watched "working group 4" on cybersecurity has set a Nov. 7 deadline for draft reports from each of its subgroups amid solid progress toward a late January deadline for an interim report to the FCC.

All Sectors >>


Cyber legislation is still a long shot, despite optimistic notes

House Republicans this week expressed optimism about action on cybersecurity legislation in the upcoming lame-duck session. Unfortunately for them, the decision to act rests with the other body and mostly with the other party.

NIST sets stage for first cyber-physical systems document due Nov. 1

The National Institute of Standards and Technology has released its game plan for finalizing a document on the cybersecurity of cyber-physical systems as the agency works to nail down specifics on cybersecurity principles, challenges, use cases, and "cross-cutting concerns" of security, trust and privacy to establish requirements for CPS cybersecurity.

Attorneys: Regulation on healthcare cybersecurity involves more than HIPAA compliance

Compliance with the Health Insurance Portability and Accountability Act is not the only thing healthcare companies should consider when boosting cybersecurity, attorneys said Thursday, adding that states have emerging healthcare cyber requirements and increased info-sharing is critical for industry.

Small businesses seen in need of more cyber assistance and tools

Small-business awareness of the government's framework of cybersecurity standards is painfully low, according to the owner of a small tech company that has developed a tool to help small and midsized firms figure out how to use the framework and where to start in their cyber efforts.

Consulting firm says insurers' use of framework could spawn mandates

The insurance industry's use of the federal cybersecurity framework of standards has the potential to undermine the framework's voluntary nature, according to consulting firm Navigation Advisors.

Recent News

SEC establishes internal cybersecurity working group

China, others seen as undeterred by cyber disclosures

White House request attracts dozens of comments on privacy objectives

Healthcare should emulate others on cybersecurity, industry and government officials say

Sign Up Now

Get one month of free access

Form for a free trial

Daily Briefs

IT sector council calls for greater efforts to promote cybersecurity framework

The Information Technology Sector Coordinating Council called for a "comprehensive and sustained national educational and awareness campaign" to promote cybersecurity, in comments submitted this week to the National Institute of Standards and Technology.

Feinstein, Chambliss to discuss cyber prospects in lame-duck session

As the mid-term elections approach, Senate Intelligence Chairman Dianne Feinstein (D-CA) and ranking member Saxby Chambliss (R-GA) will appear at a U.S. Chamber of Commerce "cybersecurity summit" on Tuesday to discuss prospects of passing cybersecurity information-sharing legislation during the upcoming lame-duck session.

DOD to create joint headquarters for defense network security

The Pentagon's Defense Information Systems Agency and U.S. Cyber Command will soon have a joint headquarters to manage all defense networks, according to an official from DISA who advised industry to be ready to support the effort.

Featured Document

American Chemistry Council response to NIST framework RFI

These Oct. 10, 2014 comments from the American Chemistry Council support the use of the National Institute of Standards and Technology's cybersecurity framework. "The framework is complementary to the security code included into ACC's Responsible Care Program and other voluntary frameworks that have similar goals," ACC states. The group recommends that this industry-driven approach should expand internationally to "avoid burdening multinational enterprises with the requirements of multiple, and often conflicting, jurisdictions."

Trial Access to InsideCybersecurity

If you haven't already tried InsideCybersecurity, you can sign up for a free, one-month, no-obligation trial subscription right now. You'll have full access to everything InsideCybersecurity has to offer.

Form for a free trial

Already a subscriber? Click here to log in.