Executive Order on Threat Info Sharing

Wednesday, February 18, 2015 @ 03:02 PM gHale


President Obama signed an executive order last week that looks to enable the private sector to better share cyber security threat information with each other and government.

The executive order calls for the formation of cyber security fusion centers, encourages voluntary standards for information sharing, and formalizes the Homeland Security Department’s role in information sharing and oversight of classified threat sharing relationships.

RELATED STORIES
DoE Releases Framework Guidance
Smart Grid Framework Updated
Security a Top Concern at Utilities
Smart Grid Framework 3.0 Available

The executive order, signed during the White House Cybersecurity Summit at Stanford University, encourages the creation of information sharing and analysis organizations, or ISAOs, which could form as a not-for-profit company, a membership organization or a single company serving customers.

Under the order, DHS would fund a non-profit organization to develop a common set of voluntary standards for ISAOs to collaborate more easily and quickly. DHS’s National Cybersecurity and Communications Integration Center would also enter into information sharing agreements with ISAOs.

The executive order also adds DHS to the agencies that can approve classified information sharing arrangements.

“Such information sharing must be conducted in a manner that protects the privacy and civil liberties of individuals, that preserves business confidentiality, that safeguards the information being shared, and that protects the ability of the Government to detect, investigate, prevent, and respond to cyber threats to the public health and safety, national security, and economic security of the United States,” the executive order said.

Just last month, the president unveiled a legislative plan to strengthen digital privacy and cyber security. One of the proposals under the plan would shield companies from lawsuits filed in reaction to them sharing computer threat data with the government in an effort to prevent cyber attacks.

The administration has put a major focus on cyber threat information sharing over the past few months.



Leave a Reply

You must be logged in to post a comment.