Telecom, tech associations urge lawmakers to address liability issues around supply-chain vulnerability reporting

Industry leaders on CISA’s ICT supply-chain task force want Congress and government agencies to consider how changing liability laws could entice companies to disclose more information about their vulnerabilities.

The Information and Communications Technology Supply Chain Risk Management Task Force has four working groups focused on information sharing, risk assessments, qualified bidder lists and qualified manufacturer lists, and vendors. Industry task force co-chairs Robert Mayer, USTelecom senior vice president for cybersecurity, and John Miller, Information Technology Industry Council senior...