Department of Homeland Security

On July 26, 2016, the White House unveiled Presidential Policy Directive PPD-41, which sets forth principles for federal responses to cyber incidents approved by the National Security Council. PPD-41 first focuses on incident response to cyber attacks on government assets, but also outlines federal incident responses to cyber attacks on certain critical infrastructure within the private sector.
Continue Reading White House Releases New Policy on Federal Cyber Incident Response

On February 16, 2016, the Department of Homeland Security, in collaboration with other federal agencies, released a series of documents outlining procedures for both federal and non-federal entities to share and disseminate cybersecurity information. These documents were released as directed by the Cybersecurity Act of 2015, signed into law on December 18, 2015.
Continue Reading Department of Homeland Security Issues Procedures Regarding Sharing Cybersecurity Information

On February 9, 2016, President Obama signed an Executive Order establishing a permanent Federal Privacy Council that will serve as the principal interagency support structure to improve the privacy practices of government agencies and entities working on their behalf.
Continue Reading President Obama Signs Executive Order Establishing Federal Privacy Council

On December 16, 2015, leaders in the U.S. House of Representatives and Senate released an omnibus spending bill that contained cybersecurity information sharing language that is based on a compromise between the Senate’s Cybersecurity Information Sharing Act and two cybersecurity information sharing bills that passed in the House earlier this year.
Continue Reading U.S. Congress Releases Compromise Bill on Cybersecurity Information Sharing

On January 13, 2015, President Obama announced legislative proposals and administration efforts with respect to cybersecurity, including a specific proposal for a national data breach notification standard.
Continue Reading President Obama Announces a National Data Breach Notification Standard and Other Cybersecurity Legislative Proposals and Efforts