ICD Brief 101.

17.09.2018.-23.09.2018.

Welcome to our Second Hundred ICD Brief series! Two years ago, we invited friends and colleagues to chart the global shift from plans to “Working Cyber Partnerships.” The Global Multi-Stakeholders: nations, corporations and academe seemed mired in a never-never land of Fear, Uncertainty and Doubt (FUD).  Only the threats seemed real.

Today’s updates from the US, Australia, the Baltic nations of Estonia and Latvia, the EU, India, Japan, Singapore and the UK bring tangible progress in terms of definitions, models, laws and rules of engagement.

Our Second Hundred Series continues the exploration of how these working partnerships and newly accepted concepts of “interconnectedness” will lead to a 21^st century global working order.

Our diverse readership aged 11 to late 80’s in more than 40 countries report benefits from global views of emerging trends, skim for work and in the case of our tech and policy experts, see how the world’s secular press covers their work. Previous editions are HERE   on our website.

Here’s a sampling: Highly recommend the CNBC video: “How do you stop a cyberattack.”

• When This Country Faced a Suspected Russian Cyberattack – It Took Some Big Steps to Stop Another includes
  • How do you stop a cyberattack?

    Excellent video overview on the past 10 years by Elisabeth Schulze CNBC 4:35.

• USA to Go on Cyber-Offence Under New Trump Policy
• DHS to Roll Out New Cybersecurity Risk Score for Agencies
• ENISA Launches Cybersecurity Strategies Evaluation Tool
• Japan’s Defense Ministry Set to Outsource Cyberdefense Duties to “White Hat” Hackers Amid Shortage of Experts
• Singapore to Offer Bug Bounty, Set Up AseanCybersecurity Centre
• The Importance of Cybersecurity for SMEs in the UK
  • IBM video How It Works: Cybersecurity on Cybercrime Defenses 4:49

USA

USA to Go on Cyber-Offence Under New Trump Policy

“The United States has revealed a new national cyber security strategy and warned it will increase its use of aggressive cyber-ops. The move comes as US intelligence officials expect a flurry of digital attacks ahead of the November 6 midterm elections.”

DoD Releases First New Cyber Strategy in Three Years

“In its first formal cyber strategy document in three years, the Department of Defense said it would focus its cyber efforts on China and Russia and use the Pentagon’s cyber capabilities to collect intelligence as well as to prepare for future conflicts.”

DHS to Roll Out New Cybersecurity Risk Score for Agencies

“Over the next three to six months, the Department of Homeland Security will launch a new cybersecurity risk score for agencies.”

White House National Cyber Strategy Praised by Experts

“The new National Cyber Strategy released by the White House details plans for improving cybersecurity and garnered positive early reviews from experts for its comprehensiveness.”

DHS Guidance on Cybersecurity Reveals Emergent Threats to Critical Infrastructure and Industry by Larry O’Brien

“DHS Guidance on Cybersecurity reveals the threat of coordinated cyberattacks on critical infrastructure and manufacturing in the US by hostile nation states is increasing. Just a few months ago, the US Department of Homeland Security identified major hacking groups responsible for recent industry and critical infrastructure attacks as having Russian state sponsorship. End users in the manufacturing sector, process industries, power generation and T&D, nuclear, water & wastewater, and even building management and smart cities sectors should be up to date on the guidance surrounding this threat, which has so far claimed over 100 victims across these sectors.”

Senate Could Act on Top DHS Cybersecurity Priority

“The top legislative cybersecurity priority for DHS might finally be nearing the finish line. Multiple sources tell MC that the Senate could soon bring a bill establishing the Cybersecurity and Infrastructure Security Agency to the floor. The legislation, H.R. 3359 (115), long ago passed the House and has been awaiting action in the Senate. Now, sources familiar with the bill say, it could hit the floor as early as next week if no senator objects.”

The State of NAIC’s Data Security Model Law

“Most states have yet to adopt a cyber security model law for the insurance industry like the one approved by the National Association of Insurance Commissioners in 2017, but one expert believes the industry should be prepared for what he sees as an eventuality.”

New Ohio Law Incentivizes Businesses that Comply withCybersecurity Programs

“On Aug. 3, 2018, Gov. John Kasich signed Senate Bill 220, also known as the Ohio Data Protection Act. Under the Act, eligible organizations may rely on their conformance to certaincybersecurity frameworks as an affirmative defense against tort claims in data breach litigation. The Act is intended to provide organizations with a legal incentive to implement writtencybersecurity programs.”

CT Cybersecurity: “We Cannot Rely on Washington to Keep Us Safe”

“The leader of Connecticut’s cybersecurity efforts said Tuesday that Washington, with a deeply polarized Congress and faction-riven White House, has abrogated its role in defending the nation’s electrical grid, natural gas system and public water supplies against hackers who are growing bolder, more numerous and more sophisticated.”

Cyber Conflict as an Academic Discipline: It’s Not All Doom-and-Gloom

“As few weeks ago on Net Politics, Melissa K. Griffith laid out the challenges facing academics who want to study cyber conflict. Although Melissa is right that there may be no single foundational cybersecurity text as there might be in the study of nuclear weapons, a solid base of literature is now emerging.”