2 critical ways regulations and frameworks weaken cybersecurity

From: CSO

Security regulations and frameworks are good and necessary, but they can be inflexible and draw focus away from the most significant security risks.

By

***

That concept continues as you scale past a single company. You can secure a single organization with written policies and procedures, but it takes industry or government regulations and frameworks to secure everyone. Good, long-term security for the entire macrocosm will not happen without regulations and frameworks that companies are forced to follow. Voluntary participation does not work for computer security.

***

When the U.S. Government Declares Companies Cyber-Insecure, We Should All Pay Attention

From: The National Law Review

Article By Jonathan E. Meyer, Townsend L. Bourne, Bryce D. Chadwick | Sheppard, Mullin, Richter & Hampton LLP\

The U.S. Government is increasingly taking the initiative to alert companies to the cybersecurity risks of certain foreign corporations. Whether by issuing binding directives on agencies, passing laws or promulgating regulations that include prohibitions on the use of these companies’ products – including by government contractors, the Government is becoming less reluctant to interfere in the private market in favor of warning American companies of the cybersecurity dangers out there.

Threat of a Remote Cyberattack on Today’s Aircraft Is Real

From: DarkReading

We need more stringent controls and government action to prevent a catastrophic disaster.

Bruce Jackson

The Federal Aviation Administration says today’s aircraft is safe from cybercriminals. Major aircraft builders say the same thing. But the Department of Homeland Security (DHS) and the Department of Energy say “Not so fast.” A few influential politicians and some experts in the aeronautics industry have also voiced their concerns in the past year.

***

What’s so exasperating is that policies, process, procedures, and tools exist to mitigate the risk. But the wheels of life-preserving change may not be turning quickly enough — a possibility exacerbated by the fact that a widespread skills gap is preventing change from being realized.

Qualcomm opposes blanket rule on data localisation

From: ET Telecom

Qualcomm has opposed any move to make it mandatory for companies to store customers’ personal data locally, saying any such blanket regulation – like the one India is planning – can hit the competitiveness of a company and limit consumers’ choice.

NEW DELHI: US chipmaker Qualcomm has opposed any move to make it mandatory for companies to store customers’ personal data locally, saying any such blanket regulation – like the one India is planning – can hit the competitiveness of a company and limit consumers’ choice.

New York State Establishes Crypto Regulatory Task Force

From: Cryptovest

The body is to review the virtual coin and blockchain markets as well as the existing legal framework in the state.

by Marin Marinov

The US state of New York has set up a digital asset task force with the goal to review the regulatory environment in the state and to submit a report after conducting a two-year analysis, a local lawmaker said in a press release on Wednesday. Clyde Vanel, a Democratic Party member of the State Assembly, published the statement via his Facebook account, claiming that the working group is the first of its kind in the United States.