Protect Your Digital Assets
Organizations in the United States have an advanced framework for sharing cyber threat observables. This framework has been developed under the Cybersecurity Information Sharing Act of 2015 (CISA) [December 18, 2015]. This is federal legislation that provides liability protection to all organizations from litigation associated with a data breach.
We will cover how it applies to you. The law provides two key components.
- It authorizes teams to monitor for cyber threats and to implement defensive measures on their own information; and
- It provides for liability protection for organizations that voluntarily share cyber threat indicators.
On February 16, 2016 the U.S. Department of Homeland Security (DHS) and the Department of Justice issued guidance to clarify what constitutes sharing in order to qualify for these protections. Although the guidance offers liability protection for private entities for monitoring, it does not offer the same for operating defensive measure that go beyond monitoring.
Share or Receive Cyber Threat Observables
According to Section 104(c)(1) and subject to certain restrictions a private entity is authorized to share with or receive from the federal government, state and local governments, and other companies “cyber threat indicators” and “defensive measures” for a cybersecurity purpose. Personally identifiable information (PII) must be obfuscated or deleted before sharing. And the sharing entity must use the DHS CISA process to obtain protection.