Promoting Private Sector Cybersecurity Information Sharing
Headline: Directs Homeland Security to Promote Private Sector Cybersecurity Information Sharing
What it does: Agencies must promote and support voluntary private sector information-sharing organizations and coordinate voluntary standards and agreements to share cybersecurity risk and incident information.
- Encourages companies and nonprofits to form voluntary cybersecurity information-sharing groups.
- Designates the government's cybersecurity center to enter voluntary agreements with sharing groups.
- Requires agencies to add privacy protections and send assessments to Homeland Security.
Summary
This order encourages and supports voluntary sharing of cybersecurity risk and incident information between private companies, nonprofits, and the federal government. It directs the Secretary of Homeland Security to promote and form Information Sharing and Analysis Organizations (ISAOs), arrange for a nongovernmental body to develop voluntary standards, and task the government's cybersecurity center to coordinate and enter into voluntary agreements with ISAOs.
Those affected include private firms, nonprofit groups, and federal agencies involved in cybersecurity. The order also requires privacy and civil liberties protections and agency assessments to be submitted to the Department of Homeland Security for review.
Ask about this order
Ask questions about this executive order and its implications.
What agencies are affected by this order?
How does this order change existing policy?
What are the practical implications of this order?