ENHANCING RESILIENCE THROUGH CYBER INCIDENT DATA SHARING AND ANALYSIS

This paper outlines the potential benefits of a trusted cyber incident data repository that enterprise risk owners and insurers could use to anonymously share, store, aggregate, and analyze sensitive cyber incident data. Optimally, such a repository could enable a novel information sharing capability among the Federal government, enterprise risk owners, and insurers that increases shared awareness about current and historical cyber risk conditions and helps identify longer-term cyber risk trends. This information sharing approach could help not only enhance existing cyber risk mitigation strategies but also improve and expand upon existing cybersecurity insurance offerings. Rooted in rich repository data, new analytics products could help inform more effective private and public sector investment in these complementary cyber risk management categories.

Spotlight

Info-Tech Research Group

We produce unbiased and highly relevant IT research to help CIOs and IT leaders make strategic, timely, and well-informed decisions. We partner closely with IT teams to provide everything they need, from actionable tools to analyst guidance, ensuring they deliver measurable results for their organizations.

OTHER WHITEPAPERS
news image

U.S. Trade in Services: Trends and Policy Issues

whitePaper | January 22, 2020

Trade in “services” refers to a wide and growing range of economic activities. These activities include transport, tourism, financial services, use of intellectual property, telecommunications and information services, government services, maintenance, and other professional services from accounting to legal services. Compared to goods, the types and volume of services that can be traded are limited by factors such as the requirement for direct buyer-provider contact, and other unique characteristics such as the reusability of services (e.g., professional consulting) for which traditional value measures do not account. In addition to services as independent exports, manufactured and agricultural products incorporate and depend on services, such as research and development or shipping of intermediate or final goods. As services account for 71% of U.S. employment, U.S. trade in services, both services as exports and as inputs to other exported products, can have a broad impact across the U.S. economy.

Read More
news image

A Two-Track Strategy to a Modern Digital Government and Public Sector

whitePaper | May 6, 2021

Government and Public Sector IT leaders are currently faced with the difficult task of balancing the needs of both public servant workers and citizens.

Read More
news image

Compliance with Internal Revenue Service (IRS) Publication 1075

whitePaper | June 26, 2022

The United States Internal Revenue Service’s (IRS) goal is to promote taxpayer confidence in the integrity of the tax system by ensuring confidentiality of the tax information provided to the federal, state and local agencies. The IRS 1075 publication provides guidance to agencies, agents, contractors and subcontractors on implementing adequate policies, processes, controls and safeguards to protect Federal tax information (FTI). The IRS 1075 requirements follow the FedRAMP and NIST 800-53 Rev.5 guidelines. Agencies that receive FTI must ensure that they have adequate programs in place to protect the data received in line with IRS 1075 guidelines. VMware Cloud on AWS GovCloud (US) has been authorized against the FedRAMP High baseline controls and therefore can support agencies in meeting the IRS 1075 requirements.

Read More
news image

Accelerating Your Zero Trust Journey in Federal Government

whitePaper | April 19, 2022

Zero Trust is a strategic approach to cybersecurity that secures an organization by eliminating implicit trust and continuously validating every stage of digital interaction. It’s a way for government agencies and departments to build resilience into their IT environments.

Read More
news image

Military and Security Developments Involving the People's Republic of China 2021

whitePaper | November 3, 2021

The Department of Defense (DoD) annual report to Congress on military and security developments involving the People’s Republic of China (PRC) provides a baseline assessment of the Department’s pacing challenge. The PRC has long viewed the United States as a competitor and has characterized its view of strategic competition in terms of a rivalry among powerful nation states, as well as a clash of opposing systems. As expressed in the Interim National Security Strategic Guidance, the PRC is the only competitor capable of combining its economic, diplomatic, military, and technological power to mount a sustained challenge to a stable and open international system. The PRC is increasingly clear in its ambitions and intentions.

Read More
news image

Sustaining and Scaling Civic and Government Technology: A White Paper on Challenges, Best Practices and Recommendations

whitePaper | March 17, 2023

The International Republican Institute (IRI) is one of the world’s leading international democracy development organizations. The nonpartisan, nongovernmental institute has supported civil society organizations, journalists, democratic governments and other democratic actors in more than 100 countries since 1983—in Africa, Asia, Eurasia, Europe, Latin America and the Caribbean, the Middle East and North Africa—with a current presence in over 70 and working in over 100. Through its global support network to advance digital democracy initiatives, IRI provides capacity building trainings to strengthen grassroots actors’ ability to launch, sustain and scale digital democracy projects; and supports civictech and govtech projects around the world.

Read More

Spotlight

Info-Tech Research Group

We produce unbiased and highly relevant IT research to help CIOs and IT leaders make strategic, timely, and well-informed decisions. We partner closely with IT teams to provide everything they need, from actionable tools to analyst guidance, ensuring they deliver measurable results for their organizations.

Events