Frosh, Maryland Cybersecurity Council release preliminary report
Maryland Attorney General Brian E. Frosh (D), chairman of the Maryland Cybersecurity Council, and the council announced the release of its Initial Activities Report, outlining the council’s activities and preliminary recommendations based on its findings this year. Among those, the council recommends the state create a cyber first responders reserve, where an appropriate state agency would coordinate with top cyber expert reservists in the event of a cyber emergency.
Recently the United States government created a digital service corps to facilitate the hiring of digital expertise. In addition, the federal government and individual states have a national reserve that can be called upon in the event of a natural or other kind of disaster. The council recommends Maryland have access to a reserve of digital expertise, due to the growing threat cyber attacks pose to the welfare of the state. The council envisions the Maryland Emergency Management Agency leading and coordinating the efforts to build a cyber first responder reser ve.
Additional recommendations from the council include:
• Developing legislation to expand the applicability of the Maryland Personal Information Protection Act (MPIPA) by redefining “personal information” to include more types of data that can be used to identify a person;
• Creating a civil cause of action for remote intrusions, providing a private party the ability to pursue a claim against a person or entity that access the private party’s personal information without authority;
• Examining a coordinated approach with other states and government cybersecurity efforts across the Mid-Atlantic region;
• Working with the National Institutes of Standards and Technology (NIST), the U.S. Department of Homeland Security and other government agencies to identify critical infrastructure sectors that are at risk of cyber attacks and are in need of enhanced cybersecurity measures;
• Creating an online repository of cybersecurity outreach, awareness and training information available to individuals, and private and public sectors.
In 2015, the Maryland General Assembly created, through Senate Bill 542, the Maryland Cybersecurity Council to develop comprehensive strategies and recommendations to protect the state’s critical infrastructure. The council was also tasked with developing strategies to move Maryland forward as a national hub in cybersecurity innovation and jobs. To achieve its mission and purpose, the council established six subcommittees, including law, policy and legislation; cyber operations and incident response; critical infrastructure and cybersecurity framework, education and workforce development; economic development; and public awareness and community outreach. The council has held three full council meetings and numerous subcommittee meetings throughout the year.
The interim report was delivered to Maryland General Assembly last week. The council’s next report is due to the Maryland General Assembly on July 1, 2017.
The full report and interim recommendations can be found at https://www.oag.state.md.us/press/MD_Cyber_Council_Interim_Report.pdf