|
When we created the Cyber Security Industry Alliance (CSIA) in 2004, we identified three clear objectives: monitor and influence public policy; develop and build awareness campaigns; and identify and support emerging technology standards.
February 2006 marked our second anniversary. Our goal is the same now as it was then: to advocate for laws and public policies designed to ensure the privacy, reliability and integrity of information systems. As with any association, our success has primarily been a function of the combined strength of our individual members.
We are pleased with our progress in the last two years. In 2005, we closely tracked nearly 40 pieces of legislation, and actively engaged members of Congress and their staffs on more than half of them, including data breach notification, health care, and telecom reform. Among our accomplishments:
CSIA raised its profile in Congress, testifying three times before committees in both chambers. We also sponsored briefings for members of Congress and their staff on cyber security issues including spyware and digital control systems.
CSIA lobbying efforts regarding data breach notification legislation led to the inclusion of specific language within the House Commerce Committee bill, affirming encryption as a best practice. We ensured the Energy Policy Act of 2005 included a specific provision to address the security of the information systems supporting the Nation’s power grid.
CSIA helped convince the Senate Foreign Relations Committee to favorably review the Council of Europe’s Convention on Cybercrime, and to request ratification by the Senate as soon as possible.
There is still a great deal of work to be done. As I write, the House of Representatives is finalizing the details of a comprehensive data breach prevention and notification bill, and we’re actively engaged. We’re also aggressively pursuing legislation to address spyware, which includes a provision to protect anti-spyware providers from frivolous lawsuits. And we are encouraged that this year, the Senate will approve the Council of Europe’s Convention on Cybercrime — a critical tool for effective international law enforcement — which the Bush administration signed in 2001.
Creating a secure online environment can only be achieved through a comprehensive effort involving the implementation of appropriate public policy, effective security technology, high industry standards, and support from governments worldwide. We have made significant progress over our first two years, but there’s a world of opportunity out there ahead of us.
About the Author
Paul Kurtz is Executive Director of the Cyber Security Industry Alliance. He can be reached at pkurtz@csialliance.org.
Go Back
|
