Logo

American Security Council Foundation

Back to main site

Alan W. Dowd is a Senior Fellow with the American Security Council Foundation, where he writes on the full range of topics relating to national defense, foreign policy and international security. Dowd’s commentaries and essays have appeared in Policy Review, Parameters, Military Officer, The American Legion Magazine, The Journal of Diplomacy and International Relations, The Claremont Review of Books, World Politics Review, The Wall Street Journal Europe, The Jerusalem Post, The Financial Times Deutschland, The Washington Times, The Baltimore Sun, The Washington Examiner, The Detroit News, The Sacramento Bee, The Vancouver Sun, The National Post, The Landing Zone, Current, The World & I, The American Enterprise, Fraser Forum, American Outlook, The American and the online editions of Weekly Standard, National Review and American Interest. Beyond his work in opinion journalism, Dowd has served as an adjunct professor and university lecturer; congressional aide; and administrator, researcher and writer at leading think tanks, including the Hudson Institute, Sagamore Institute and Fraser Institute. An award-winning writer, Dowd has been interviewed by Fox News Channel, Cox News Service, The Washington Times, The National Post, the Australian Broadcasting Corporation and numerous radio programs across North America. In addition, his work has been quoted by and/or reprinted in The Guardian, CBS News, BBC News and the Council on Foreign Relations. Dowd holds degrees from Butler University and Indiana University. Follow him at twitter.com/alanwdowd.

ASCF News

Scott Tilley is a Senior Fellow at the American Security Council Foundation, where he writes the “Technical Power” column, focusing on the societal and national security implications of advanced technology in cybersecurity, space, and foreign relations.

He is an emeritus professor at the Florida Institute of Technology. Previously, he was with the University of California, Riverside, Carnegie Mellon University’s Software Engineering Institute, and IBM. His research and teaching were in the areas of computer science, software & systems engineering, educational technology, the design of communication, and business information systems.

He is president and founder of the Center for Technology & Society, president and co-founder of Big Data Florida, past president of INCOSE Space Coast, and a Space Coast Writers’ Guild Fellow.

He has authored over 150 academic papers and has published 28 books (technical and non-technical), most recently Systems Analysis & Design (Cengage, 2020), SPACE (Anthology Alliance, 2019), and Technical Justice (CTS Press, 2019). He wrote the “Technology Today” column for FLORIDA TODAY from 2010 to 2018.

He is a popular public speaker, having delivered numerous keynote presentations and “Tech Talks” for a general audience. Recent examples include the role of big data in the space program, a four-part series on machine learning, and a four-part series on fake news.

He holds a Ph.D. in computer science from the University of Victoria (1995).

Contact him at stilley@cts.today.

Senators draft bill that would require many entities to report cyber breaches within 24 hours

Friday, June 18, 2021

Categories: ASCF News Cyber Security

Comments: 0

Source: https://www.cnn.com/2021/06/16/politics/bill-report-cyber-breach-24-hours/index.html

Photo: wral.com

CNN)US lawmakers are preparing legislation that would require a vast range of public and private entities to alert the government within 24 hours of a cybersecurity breach, following a wave of ransomware attacks that have threatened the nation's economic and national security.

The bipartisan draft by Sens. Mark Warner, a Virginia Democrat; Marco Rubio, a Florida Republican; and Susan Collins, a Maine Republican, reflects a renewed effort by Congress to pass long-awaited federal rules surrounding cybersecurity breach notifications. There is currently no single federal standard, which critics have said for years is a hindrance to protecting the nation from cyberattacks.
Warner is the chair of the Senate Intelligence Committee, Rubio is the panel's top Republican and Collins has been involved in the push to craft comprehensive federal cybersecurity legislation since at least 2012.

The bill circulating in Washington, obtained by CNN, would apply to US government agencies, as well as federal contractors and critical infrastructure owners and operators, such as businesses in the manufacturing, energy and financial services sectors. Industry representatives and trade groups have already received copies of the discussion draft.

Those entities would be required to issue breach reports to the Department of Homeland Security's Cybersecurity and Infrastructure Security Agency, according to the discussion draft. The legislation would direct the agency to establish a secure mechanism to receive the reports.

The bill includes liability protections for companies that submit breach notification reports, which cybersecurity experts have said is critical to ensuring that businesses are not afraid to come forward to disclose breaches and to help US officials bolster the nation's cybersecurity.

Some industries are already under stricter reporting requirements. The Transportation Security Administration, for example, recently imposed a 12-hour breach reporting requirement on US pipeline companies. Under the draft bill, those requirements would take precedence over the 24-hour deadline.

The draft bill directs DHS to develop additional rules with definitions and requirements associated with implementing the law, and for DHS and its cybersecurity agency to submit annual reports to Congress about the notifications.

A top official with the Cybersecurity and Infrastructure Security Agency called this week for more cybersecurity incident reporting to the agency, arguing that it would help the US government protect critical industries across the country from cyberattacks.

"We need the ability to get visibility into national cybersecurity risks," Eric Goldstein, executive assistant director for cybersecurity at the agency, said during a House Homeland Security Committee hearing Tuesday. "We need to understand where adversaries are intruding into networks across this country. We need to understand the techniques that they're using to break in. We need to understand what they are doing or trying to do. The more of that kind of information that we get, we can then protect others."
"The more that we as a country can do to drive reporting of cybersecurity incidents to CISA, as TSA recently did with their sort of directives, and certainly as several of your colleagues have suggested, via the other avenues that will help drive that change," Goldstein told lawmakers.

CORRECTION: An earlier version of this article incorrectly described Sen. Susan Collins' longtime efforts on cybersecurity. She has focused on comprehensive federal cybersecurity measures.

Comments RSS feed for comments on this page

There are no comments yet. Be the first to add a comment by using the form below.