Frosh, Mary­land Cy­ber­se­cu­rity Coun­cil re­lease pre­lim­i­nary re­port

Maryland Independent - - News -

Mary­land At­tor­ney Gen­eral Brian E. Frosh (D), chair­man of the Mary­land Cy­ber­se­cu­rity Coun­cil, and the coun­cil an­nounced the re­lease of its Ini­tial Ac­tiv­i­ties Re­port, out­lin­ing the coun­cil’s ac­tiv­i­ties and pre­lim­i­nary rec­om­men­da­tions based on its find­ings this year. Among those, the coun­cil rec­om­mends the state cre­ate a cy­ber first re­spon­ders re­serve, where an ap­pro­pri­ate state agency would co­or­di­nate with top cy­ber ex­pert re­servists in the event of a cy­ber emer­gency.

Re­cently the United States gov­ern­ment cre­ated a dig­i­tal ser­vice corps to fa­cil­i­tate the hir­ing of dig­i­tal ex­per­tise. In ad­di­tion, the fed­eral gov­ern­ment and in­di­vid­ual states have a na­tional re­serve that can be called upon in the event of a nat­u­ral or other kind of dis­as­ter. The coun­cil rec­om­mends Mary­land have ac­cess to a re­serve of dig­i­tal ex­per­tise, due to the grow­ing threat cy­ber at­tacks pose to the wel­fare of the state. The coun­cil en­vi­sions the Mary­land Emer­gency Man­age­ment Agency lead­ing and co­or­di­nat­ing the ef­forts to build a cy­ber first re­spon­der reser ve.

Ad­di­tional rec­om­men­da­tions from the coun­cil in­clude:

• De­vel­op­ing leg­is­la­tion to ex­pand the ap­pli­ca­bil­ity of the Mary­land Per­sonal In­for­ma­tion Pro­tec­tion Act (MPIPA) by re­defin­ing “per­sonal in­for­ma­tion” to in­clude more types of data that can be used to iden­tify a per­son;

• Cre­at­ing a civil cause of ac­tion for re­mote in­tru­sions, pro­vid­ing a pri­vate party the abil­ity to pur­sue a claim against a per­son or en­tity that ac­cess the pri­vate party’s per­sonal in­for­ma­tion without au­thor­ity;

• Ex­am­in­ing a co­or­di­nated ap­proach with other states and gov­ern­ment cy­ber­se­cu­rity ef­forts across the Mid-At­lantic re­gion;

• Work­ing with the Na­tional In­sti­tutes of Stan­dards and Tech­nol­ogy (NIST), the U.S. Depart­ment of Home­land Se­cu­rity and other gov­ern­ment agen­cies to iden­tify crit­i­cal in­fra­struc­ture sec­tors that are at risk of cy­ber at­tacks and are in need of en­hanced cy­ber­se­cu­rity mea­sures;

• Cre­at­ing an on­line repos­i­tory of cy­ber­se­cu­rity out­reach, aware­ness and train­ing in­for­ma­tion avail­able to in­di­vid­u­als, and pri­vate and pub­lic sec­tors.

In 2015, the Mary­land Gen­eral Assem­bly cre­ated, through Sen­ate Bill 542, the Mary­land Cy­ber­se­cu­rity Coun­cil to de­velop com­pre­hen­sive strate­gies and rec­om­men­da­tions to pro­tect the state’s crit­i­cal in­fra­struc­ture. The coun­cil was also tasked with de­vel­op­ing strate­gies to move Mary­land for­ward as a na­tional hub in cy­ber­se­cu­rity in­no­va­tion and jobs. To achieve its mis­sion and pur­pose, the coun­cil es­tab­lished six sub­com­mit­tees, in­clud­ing law, pol­icy and leg­is­la­tion; cy­ber op­er­a­tions and in­ci­dent re­sponse; crit­i­cal in­fra­struc­ture and cy­ber­se­cu­rity frame­work, ed­u­ca­tion and work­force de­vel­op­ment; eco­nomic de­vel­op­ment; and pub­lic aware­ness and com­mu­nity out­reach. The coun­cil has held three full coun­cil meet­ings and nu­mer­ous sub­com­mit­tee meet­ings through­out the year.

The in­terim re­port was de­liv­ered to Mary­land Gen­eral Assem­bly last week. The coun­cil’s next re­port is due to the Mary­land Gen­eral Assem­bly on July 1, 2017.

The full re­port and in­terim rec­om­men­da­tions can be found at­ber_Coun­cil_In­ter­im_Re­port.pdf

Newspapers in English

Newspapers from USA

© PressReader. All rights reserved.