World Economic Forum Launches Global Centre for Cybersecurity
According to a press release last Wednesday, the World Economic Forum announced a new Global Centre for Cybersecurity to help build a safe and secure global cyberspace. The center will be based in Geneva, Switzerland, and will function as an autonomous organization under the auspices of the World Economic Forum. The aim of the center is to establish the first global platform for governments, businesses, experts, and law enforcement agencies to collaborate on cybersecurity challenges. The center will focus on the following aims:
DHS Plans to Lean More Heavily on Private Companies for Cybersecurity Needs
Because the current and projected cybersecurity talent shortage affects how DHS carries out its mission, the department plans on leaning more heavily on private companies for cybersecurity needs. According to FedScoop, “[Barry] West, the Department of Homeland Security’s senior accountable official for risk management, said that an ongoing global shortage of cyber talent could soon push agencies to more frequently pursue outsourced cybersecurity services from contractors rather than try to compete with the private sector.” In the article, West is quoted as saying, “This isn’t to say that there’s not going to be government oversight; there’s still not going to be a [chief information security officer] in charge. But I really think we are headed for a model where we are going to see security-as-a-service and you are going to see [security operations center, or SOCs] as a service.”
Three Major Cybersecurity Acquisitions Last Week
Last week, three major cybersecurity acquisitions took place that included:
2018 Thales Data Threat Report Covers Trends in Encryption and Data Security
Some findings in the latest 2018 Thales Data Threat Report include:
The report also points out that “times have changed, security strategies have not”—with a disconnect between solutions rated effective and the spending allocated toward those solutions.
House Energy and Commerce Committee Asking Why Tech Companies Withheld Information About Spectre and Meltdown Vulnerabilities
The House Energy and Commerce Committee has asked major tech companies why they withheld information about the Spectre and Meltdown vulnerabilities. According to The Hill, “In a letter, lawmakers pressed the CEOs of Intel, Apple, Microsoft, Amazon, Google, AMD and ARM to explain the need for an ‘information embargo’ agreement between the companies to keep information on the cybersecurity vulnerabilities from the public.” The article also points out that “The companies kept Spectre and Meltdown under wraps after first discovering them over the summer in an attempt to create and issue software updates before hackers discovered and could exploit the vulnerabilities.”