National Cybersecurity Policy Forum

The National Cybersecurity Policy Forum is having an event 6 December 2016 at the National Press Club.

Find registration information and agenda here.

U.S. Commerce Secretary Penny Pritzker will deliver the keynote address at the eighth USTelecom National Cybersecurity Policy Forum. Join us for a discussion of cyber policy initiatives that continue to enhance our

nation’s defenses against an array of adversaries. The Secretary will

commerce secritary penny pritzker
Secretary Penny Pritzker

discuss a report by the President’s Commission on Enhancing National Cybersecurity.

Commissioned by the President and the Department of Commerce, the 2016 Cybersecurity Commission Policy Report sets the stage for consideration of national priorities in the cybersecurity policy arena. This event will feature industry and government officials talking about ongoing work opportunities ahead to defend against the growing speed and complexity of cyber attacks.

Penny Pritzker, Secretary, U.S. Department of Commerce

Panel One: Cyber Readiness: Government Perspective
Moderator: Tim Starks, Politico Pro journalist and author of Morning Cybersecurity
Panelists: Clete Johnson, Senior Policy Advisor on Cybersecurity to Secretary of the U.S Department of Commerce
Cherilyn Pascoe, Professional Staff Member and Investigator, U.S. Senate Committee on Commerce, Science and Transportation
Kiersten Todt, Executive Director, President’s Commission on Enhancing National Cybersecurity

Panel Two: Industry Collaboration on Cyber Preparedness
Moderator: Joseph Marks, cybersecurity reporter, NextGov
Panelists: Scott Aaronson, Executive Managing Director, Electric Edison Institute
Christopher Boyer, Assistant Vice President, Global Policy, AT&T
Larry Clinton, President, Internet Security Alliance
Heather Hogsett, Vice President of Technology and Risk Strategy, Financial Services Roundtable/BITS
Ola Sage, CEO E-Management and Chair of the IT Sector Coordinating Council


Commerce Secretary on Collaboration

Our forum likes the speech the Commerce Secretary Penny Pritzker gave at the US Chamber of Commerce Cyber Security Summit Tuesday.

” Even though the internet is now ubiquitous in our lives Cyber is the only domain where we ask private companies to defend themselves against Russian, China, Iran, and other nation states. …..

Commerce Secretary penny pritzker
Commerce Secretary Penny Pritzker

Government has a solemn obligation   to protect our people against systemic threats to our national and economic security.

Cyber attacks can not be handled exclusively by our governments law enforcement, military and intelligent services, nor are federal regulations able to keep pace with ever evolving cyber threats. ….

Through  law and rule making congress and federal agencies intact solutions for our nations challenges Companies then react with compliance. ……

But laws and regulations alone cannot protect us from the emerging cyber threats….

Our cyber advisories constantly deploy new and evolving methods to exploit vulnerability’s and inflict harm on our country……

Just weeks ago the Pegasus attack represented an unprecedented attack on Apples iOS platform. No static checklist, no agency role, no reactive regulation alone is capable of thwarting a threat we can not foresee.

The federal government cannot regulate cyber risk out of existence.  What we can do is work with you. Business leaders, technical experts and cybersecurity professionals, to better manage cyber risk.

Commerce believes this requires a new proactive collaborative approach between government and industry. One not reliant on static requirements but on vigilant continuous cyber risk management.

We need is a joint defense posture with real public private partnerships.

These are nice words but actually how do we turn them into action and reliable protection.

We need government and industry to speak the same language of cyber risk because we can not work together without understanding each other.

We new laws to facilitate continuous candid collaboration between industries and agencies outside of the enforcement space.

We need to work together to counter threats and deploy technical solutions that bake securities into innovation.

The Cyber Security Framework is the primary tool to evaluate cyber security posture…

Last month the FTC used the Cyber Security Framework lexicon of Identify, Protect, Detect, Respond, and Recover. The FTC detailed over 60 enforcement actions for data-breaches in a manor that CEO’s and CIOS can easily plug them into their own operations to improve their cyber security…….”

Commerce Secretary, Penny Pritzker 27 September 2016
US Chamber of Commerce Annual Cyber Security Summit