Private Sector CISOs Must Prepare For The Impact Of Public Cybersecurity Policy

Highly publicized and allegedly state-sponsored security attacks on Google and Adobe have awakened private sector security professionals to the real threat of cyberattack. Governments at all levels across the globe are currently devising new cybersecurity policies that focus on data protection, advanced threats, information assurance, identity, and reporting. They are also keen to involve private sector organizations to share information and devise tools collectively to combat cyberattacks. The US government has recently created a number of new initiatives to improve its cybersecurity program. These new provisions may or may not have a direct impact on private sector security programs, but security and risk professionals should expect to see reinforced emphasis on information-sharing. In addition, while the repercussions of these provisions are still unclear, Forrester recommends that security and risk professionals understand the new provisions, devise incident response, and maintain network visibility into their security programs.