Mastering National Cybersecurity Strategy Compliance with PwC
Meet the Authors
Key Takeaways
⇨ The White House recently unveiled a National Cybersecurity Strategy that will reshape security and compliance demands.
⇨ Software companies will soon be liable for their cybersecurity failures and new regulations will aim to keep crucial technological infrastructure.
⇨ Organizations should reach out to government cybersecurity bodies to shape new laws and prepare for new regulations.
The White House recently unveiled its US National Cybersecurity Strategy implementation plan in July. The document release came just four months after its initial announcement, which indicates a high level of urgency from the U.S. federal government in addressing cybersecurity issues.
According to a White House press release, the plan aims to enact two major shifts in how the U.S. addresses concerns to cybersecurity: “Ensuring that the biggest, most capable, and best-positioned entities – in the public and private sectors – assume a greater share of the burden for mitigating cyber risk” and “increasing incentives to favor long-term investments into cybersecurity.”
There are dozens of initiatives baked into the cybersecurity plan, but there are three important points. The strategy intends to hold software companies liable for cybersecurity failures, it proposes regulations to protect critical infrastructure, and it advances a “defend-forward” approach coupled with law enforcement actions to disrupt malicious actors.
To help organizations prepare for the new plan, we will review what each of these aspects of the plan mean for businesses, and how those companies can best address their new requirements.