How data sharing, innovation, and regulatory standardization can make it easier for organizations to both contribute and consume critical threat intelligence.
In March, the US Cyberspace Solarium Commission report punctuated the urgent need for a stronger cybersecurity posture for our country and the private companies within. The report outlines more than 70 recommendations to help C-suite executives get up to speed on cybersecurity measures.
I believe one of the most important recommendations outlined in the report is the need for greater information sharing between security experts in order to help organizations counter new and emerging security challenges. The report also proposes the development of stronger standards and policies to ensure a stronger baseline security posture from organization to organization.
The report points out that information sharing represents a critical strategy to “strengthen and enforce cyber norms and to identify common intelligence gaps and areas of critical risk or vulnerability so that the intelligence community can provide focused and actionable intelligence.” I would take that assertion one step further: Information sharing is the single most important tool to identify a vulnerability, attack, or disease outbreak that would most likely target multiple markets, such as finance, healthcare, government, and critical infrastructure.