The US Sits out an International Cybersecurity Agreement

From: Wired

Louise Matsakis

During a speech at the annual UNESCO Internet Governance Forum in Paris Monday, French President Emmanuel Macron announced the “Paris Call for Trust and Security in Cyberspace,” a new initiative designed to establish international norms for the internet, including good digital hygiene and the coordinated disclosure of technical vulnerabilities. The document outlines nine goals, like helping to ensure foreign actors don’t interfere with elections and working to prevent private companies from “hacking back,” or retaliating for a cybercrime. It’s endorsed by more than 50 nations, 90 nonprofits and universities, and 130 private corporations and groups. The United States is not one of them.

What Team Trump is finally getting right about cybersecurity

Editor’s Note: See also Voluntary private standards provide a basis for building and institutionalizing collaborative approach cybersecurity.

From: Washington Examiner

by Charlie Mitchell

***

“Fundamentally, public-private collaboration is always changing,” he said. “There isn’t one partnership model but many — just as there are numerous companies, sectors, and associations that work continuously with multiple government entities.”

NIST’s Matthew Barrett called the well-attended Baltimore conference “an affirmation that the model is vibrant and important and functional.” The event brought in leaders from all 16 designated “critical infrastructures,” such as the telecommunications, energy, financial and technology sectors.

Voluntary private standards provide a basis for building and institutionalizing collaborative approach cybersecurity

Editor’s Note: Federal law favors the use of voluntary, private standards over government-developed standards in regulations and procurement. See An Updated Look at the Federal Policies Governing How Agencies Use Voluntary Consensus Standards in Regulatory, Procurement, and Science Documents. See also Why OIRA Needs to Coordinate Federal Cyber Security Regulation.

From: Oil & Gas Journal

Use more collaborative cybersecurity approach, groups urge government

, Washington Editor

A New Congress Brings New Tech Priorities and Increased Oversight

From: Nextgov

By Jack Corrigan and Joseph Marks

The midterm elections also left a big cyber vacancy on the Senate Homeland Security Committee.

Democrats’ House takeover and shifts in the Senate landscape are bound to shift Congress’s tech and cyber policies. Here’s a rundown.

Pushing on Privacy

For starters, you can expect the debate over online privacy to grow louder in the coming months, according to Rep. Ro Khanna, D-Calif. Khanna listed personal privacy and data security among the party’s top tech priorities at a Washington Post event on Thursday. Rep. Frank Pallone, D-N.J., separately indicated privacy could become a key issue for the House Energy and Commerce Committee in the upcoming congressional term.

HHS Creates New Cybersecurity Center

From: Mondaq

Article by Jordan T. Cohen | Mintz

Last week, HHS unveiled its new Health Security Cybersecurity Coordination Center, known as “HC3.” HC3 will replace the beleaguered Healthcare Cybersecurity and Communications Integration Center (HCCIC) which had lost top officials last fall. The HC3’s role is to work with the health sector, including practitioners, organizations, and cybersecurity information sharing organizations to understand the threats it faces, learn the attackers’ patterns and trends, and provide information and approaches on how the sector can better defend itself. According to HHS, a “coordination center” has been developed within HC3 to coordinate the activities across the sector and report to DHS threats, profiles, and preventive strategies. . . .