Center for Cybersecurity Policy and Law's Avatar

Center for Cybersecurity Policy and Law

@cyberseccenter.bsky.social

Since 2017, CCPL has combined policy expertise with convening power to bring industry leaders & policymakers together to better manage security threats. https://www.centerforcybersecuritypolicy.org/

1,369 Followers  |  112 Following  |  200 Posts  |  Joined: 18.10.2023  |  1.8032

Latest posts by cyberseccenter.bsky.social on Bluesky

DEF CONยฎ 33 Hacking Conference

We are looking forward to hearing from @heatherwest.bsky.social at @defcon.bsky.social this Friday, (8/8).

Tune in at 10 am PT for a panel on #cyber policy 101 and 2 pm PT for a panel on protecting responsible hackers.

Donโ€™t miss these sessions!
defcon.org/html/defcon-...

07.08.2025 15:49 โ€” ๐Ÿ‘ 2    ๐Ÿ” 0    ๐Ÿ’ฌ 1    ๐Ÿ“Œ 0
Post image

Private sector engagement in #cyber defense operations could expose companies to legal liability and lead to diplomatic fallout.

Join us on 8/26 as we dig further into this debate.

www.connect.venable.com/26/4991/land...

05.08.2025 15:43 โ€” ๐Ÿ‘ 0    ๐Ÿ” 0    ๐Ÿ’ฌ 1    ๐Ÿ“Œ 0
Post image

The DOJโ€™s good-faith period for the Bulk Data Rule has ended & organizations now face a more prescriptive set of security requirements.

In our latest blog, we take a closer look at what these requirements mean for organizations.

Read more:
www.centerforcybersecuritypolicy.org/insights-and...

04.08.2025 19:55 โ€” ๐Ÿ‘ 0    ๐Ÿ” 0    ๐Ÿ’ฌ 0    ๐Ÿ“Œ 0
Post image

Congratulations to Sean Cairncross on his confirmation this weekend as National Cyber Director. We look forward to collaborating on key policies to strengthen our nation's cybersecurity.

04.08.2025 13:45 โ€” ๐Ÿ‘ 0    ๐Ÿ” 0    ๐Ÿ’ฌ 0    ๐Ÿ“Œ 0
Post image

Should private companies engage in offensive cyber operations? We're exploring the legal and strategic dimensions of this debate on August 26.

www.centerforcybersecuritypolicy.org/insights-and...

01.08.2025 14:11 โ€” ๐Ÿ‘ 1    ๐Ÿ” 1    ๐Ÿ’ฌ 0    ๐Ÿ“Œ 0
Post image

On 8/26, we're convening cybersecurity leaders across industry to unpack active cyber defense and offensive operations. From legal exposure to the ethics of hacking back, this event will unpack critical questions for the cybersecurity community.
www.centerforcybersecuritypolicy.org/insights-and...

30.07.2025 13:05 โ€” ๐Ÿ‘ 0    ๐Ÿ” 0    ๐Ÿ’ฌ 0    ๐Ÿ“Œ 0
Preview
White House AI plan heavy on cyber, light on implementation Well-received for its cybersecurity provisions, Trumpโ€™s AI action plan could face hurdles in practice due to a lack of implementation hooks and the burden it adds to agencies navigating budget cuts, e...

The White Houseโ€™s new #AIActionPlan is out with a strong emphasis on cybersecurity. Weโ€™re watching to see how it gets implemented at the agency level.

Read the latest by @metacurity.com in @csoonline.bsky.social to see what @heatherwest.bsky.social has to say:
www.csoonline.com/article/4027...

24.07.2025 15:53 โ€” ๐Ÿ‘ 2    ๐Ÿ” 1    ๐Ÿ’ฌ 0    ๐Ÿ“Œ 0
Post image

Last week the @uschamber.bsky.social & @trendmicro.bsky.social hosted a #ThreatIntelligenceForum on the urgent need for govโ€“industry collaboration in todayโ€™s complex #cyber landscape. The forum covered #AI, #OT & more.

Read our recap here:
www.centerforcybersecuritypolicy.org/insights-and...

23.07.2025 17:47 โ€” ๐Ÿ‘ 1    ๐Ÿ” 1    ๐Ÿ’ฌ 0    ๐Ÿ“Œ 0
| InsideCyberSecurity.com

Have you read our new white paper on the future of the #CVEprogram? It calls for diversified funding, transparency & a global governance model to strengthen vulnerability management.

Read more in Inside Cybersecurity:
insidecybersecurity.com/share/17148

22.07.2025 13:56 โ€” ๐Ÿ‘ 0    ๐Ÿ” 0    ๐Ÿ’ฌ 0    ๐Ÿ“Œ 0
Post image

The #CVE Program has anchored global vulnerability management for 25+ years. But its future is uncertain.

Our latest report lays out questions policymakers and industry must answer to move forward without splintering the community.

Read it now: www.centerforcybersecuritypolicy.org/insights-and...

17.07.2025 18:43 โ€” ๐Ÿ‘ 0    ๐Ÿ” 0    ๐Ÿ’ฌ 0    ๐Ÿ“Œ 0
Post image

Congressโ€™ Chip Security Act aims to stop U.S. chips from reaching China but the locationโ€‘tracking mandates could create backdoors, enable killโ€‘switches, and slow U.S. #AI progress.

Read more in our latest blog by Luke Oโ€™Grady:
www.centerforcybersecuritypolicy.org/insights-and...

15.07.2025 20:49 โ€” ๐Ÿ‘ 2    ๐Ÿ” 3    ๐Ÿ’ฌ 0    ๐Ÿ“Œ 0

Exciting news from the @cybercoalition.bsky.social:

Ciena, Charter Communications, and CrowdStrike have joined as new members!โ€จ

We look forward to seeing the work they do together to advance smart, effective cybersecurity policies and crossโ€‘sector collaboration.

15.07.2025 16:47 โ€” ๐Ÿ‘ 2    ๐Ÿ” 1    ๐Ÿ’ฌ 0    ๐Ÿ“Œ 0
Preview
Cyber Information Sharing Lawโ€™s Lapse Would Disrupt Progress Opinion: Ari Schwartz says Congress should reauthorize the Cybersecurity Information Sharing Act of 2015 to support the public and private sectors' ability to coordinate responses and safeguard their ...

โ€œCISA 2015 was a rare win in cybersecurity policy.โ€

Well said by Ari Schwartz in Bloomberg Law. We can't afford to lose the progress made on threat info sharing.

Read the full piece here: news.bloomberglaw.com/us-law-week/...

10.07.2025 14:29 โ€” ๐Ÿ‘ 1    ๐Ÿ” 1    ๐Ÿ’ฌ 0    ๐Ÿ“Œ 0
Preview
Cyber Information Sharing Lawโ€™s Lapse Would Disrupt Progress Opinion: Ari Schwartz says Congress should reauthorize the Cybersecurity Information Sharing Act of 2015 to support the public and private sectors' ability to coordinate responses and safeguard their ...

#Cyber threat intel sharing works โ€” but only if the law supports it.

In a recent op-ed in Bloomberg Law, CCPL Director Ari Schwartz urges Congress to reauthorize #CISA2015 before it expires this fall.

Read more below:
news.bloomberglaw.com/us-law-week/...

10.07.2025 14:16 โ€” ๐Ÿ‘ 0    ๐Ÿ” 1    ๐Ÿ’ฌ 0    ๐Ÿ“Œ 0
OAMA Poses Security Threats for Enterprise Users A bill proposed in the U.S. Senate proposed opening up the app store ecosystem to third parties but the risks to corporate enterprise need to be considered.

The #OpenAppMarketsAct may aim to boost competition, but it could also weaken the mobile security protections enterprise users rely on.

In our latest blog, @heatherwest.bsky.social breaks down the risks of sideloading & third-party app stores.
www.centerforcybersecuritypolicy.org/insights-and...

09.07.2025 18:47 โ€” ๐Ÿ‘ 0    ๐Ÿ” 0    ๐Ÿ’ฌ 0    ๐Ÿ“Œ 0
Post image

Can strong cybersecurity coexist with aggressive antitrust enforcement? Japanโ€™s answer: yes.

Read our new blog where Luke Oโ€™Grady breaks down how JFTCโ€™s MSCA guidelines carve out smart exceptions to keep users secure.
www.centerforcybersecuritypolicy.org/insights-and...

#Cybersecurity #MSCA #Japan

07.07.2025 16:59 โ€” ๐Ÿ‘ 1    ๐Ÿ” 0    ๐Ÿ’ฌ 0    ๐Ÿ“Œ 0
Post image

CCPL filed an amicus brief urging the 9th Circuit to ensure that competition remedies don't undermine security.

Our blog outlines why strong protections are key to maintaining a competitive mobile ecosystem.

Read the blog & amicus brief below: www.centerforcybersecuritypolicy.org/insights-and...

01.07.2025 15:38 โ€” ๐Ÿ‘ 0    ๐Ÿ” 0    ๐Ÿ’ฌ 0    ๐Ÿ“Œ 0
Post image

CISA 2015 expires this September. Without renewal, real-time threat intelligence sharing stalls โ€“ and so does U.S. cyber defense.

Read our latest blog to learn why Congress must act now to reauthorize the law:

www.centerforcybersecuritypolicy.org/insights-and...

30.06.2025 16:17 โ€” ๐Ÿ‘ 0    ๐Ÿ” 0    ๐Ÿ’ฌ 0    ๐Ÿ“Œ 0
Post image

The @cybercoalition.bsky.social & CR2 just weighed in on proposed revisions to the #EU Cybersecurity Act.

Their key message was to simplify, harmonize, and empower ENISA with flexibility.

Read the full submission summary:
www.centerforcybersecuritypolicy.org/insights-and...

25.06.2025 21:06 โ€” ๐Ÿ‘ 0    ๐Ÿ” 0    ๐Ÿ’ฌ 0    ๐Ÿ“Œ 1
Dual Drone EOs: A Boost to the Domestic Drone and Counter-Drone Industries President Trump signed two executive orders with the stated purpose of supporting the domestic drone industry, while also protecting against the threats posed by the misuse and malicious use of drones...

President Trumpโ€™s new drone EOs signal a major shift in U.S. drone strategy.

Jennifer Daskal unpacks what this means for industry, security, and policy:
www.centerforcybersecuritypolicy.org/insights-and...

#DronePolicy #CounterUAS #TechPolicy #NationalSecurity

10.06.2025 18:21 โ€” ๐Ÿ‘ 0    ๐Ÿ” 0    ๐Ÿ’ฌ 0    ๐Ÿ“Œ 0
Preview
Trump takes aim at Bidenโ€™s cyber executive order but leaves it largely untouched A new Trump executive order revises Bidenโ€™s last cyber EO to eliminate significant sections on digital IDs and secure software attestations, among other changes, but keeps much of Bidenโ€™s cyber protec...

"Cybersecurity is nonpartisan."

CCPLโ€™s Caitlin Clarke and Jeremy Grant reflect on what President Trumpโ€™s cyber EO keeps โ€“ and what it cuts.

New from CSO online: www.csoonline.com/article/4003...

10.06.2025 15:57 โ€” ๐Ÿ‘ 1    ๐Ÿ” 0    ๐Ÿ’ฌ 0    ๐Ÿ“Œ 0
Post image

#Finalreveal โ€“ Did you solve our latest crossword?

From cyber strategy to #ONCD milestones, these clues unpack key moments in federal #cybersecurity.

Comment to share how many you got right.

See more brain teasers here: www.centerforcybersecuritypolicy.org/category/bra...

09.06.2025 16:30 โ€” ๐Ÿ‘ 0    ๐Ÿ” 0    ๐Ÿ’ฌ 0    ๐Ÿ“Œ 0

Check out our latest white paper to explore the national security risks, policy gaps, and what it would take to responsibly shape a private market for offensive cyber.

www.centerforcybersecuritypolicy.org/insights-and...

#Nationalsecurity #cybersecurity #policy #government

06.06.2025 14:36 โ€” ๐Ÿ‘ 0    ๐Ÿ” 0    ๐Ÿ’ฌ 0    ๐Ÿ“Œ 0
Post image

A confirmation hearing for the ONCD is happening today! We've put together a special puzzle on the nominee and the office's mission & history. Can you solve the puzzle?

Check back on Monday for the reveal. For more of our brain teasers, visit: www.centerforcybersecuritypolicy.org/category/bra...

05.06.2025 18:22 โ€” ๐Ÿ‘ 0    ๐Ÿ” 0    ๐Ÿ’ฌ 0    ๐Ÿ“Œ 0
Post image

Japanโ€™s new Active #CyberDefense Law is a turning point in global #cybersecurity strategy. From real-time intel sharing to remote threat neutralization, Japan is reshaping norms.

Read the full breakdown by Adam Dobell & Grace Oโ€™Neill: www.centerforcybersecuritypolicy.org/insights-and...

05.06.2025 15:18 โ€” ๐Ÿ‘ 1    ๐Ÿ” 0    ๐Ÿ’ฌ 0    ๐Ÿ“Œ 0
Post image

#DNS is the internetโ€™s silent sentinel & a pillar of cyber resilience. At RSAC, we gathered global leaders to advance DNS protection, from PDNS to NIST 800-81.

Read the key takeaways in our latest blog by Adam Dobell.
www.centerforcybersecuritypolicy.org/insights-and...
@rsaconference.bsky.social

03.06.2025 14:28 โ€” ๐Ÿ‘ 0    ๐Ÿ” 0    ๐Ÿ’ฌ 0    ๐Ÿ“Œ 0
Post image

Should the private sector "hack back"?

In our latest white paper, Stacy O'Mara explores the legal, ethical & strategic risks of offensive cyber ops โ€” and what role, if any, private companies should play.

Read it now: www.centerforcybersecuritypolicy.org/insights-and...

29.05.2025 13:43 โ€” ๐Ÿ‘ 1    ๐Ÿ” 0    ๐Ÿ’ฌ 0    ๐Ÿ“Œ 0
Post image

Too much reliance on a single IT vendor can leave govt's exposed. With Gilbert + Tobin & the Tech Council of Australia, we ran an exercise on #ITconcentration risk, revealing key gaps & yielded reforms to boost public-sector cyber resilience.

www.centerforcybersecuritypolicy.org/insights-and...

28.05.2025 19:13 โ€” ๐Ÿ‘ 0    ๐Ÿ” 0    ๐Ÿ’ฌ 0    ๐Ÿ“Œ 1
Preview
Welcome to the sandbox: Championing cyber resilience over regulatory theater Governments should utilize regulatory sandboxes to trial existing international cyber standards, frameworks and best practices.

Too many cybersecurity regulations, not enough alignment.

Alex Botting and Alison King's latest op-ed in McCrary Cyberโ€™s #ThreatBeat, makes the case for regulatory sandboxes to ease burdens and boost global #CyberResilience.

Read the full op-ed here: threatbeat.com/welcome-to-t...

28.05.2025 17:31 โ€” ๐Ÿ‘ 0    ๐Ÿ” 0    ๐Ÿ’ฌ 0    ๐Ÿ“Œ 0
Post image

Cybersecurity shouldnโ€™t be an afterthought in competition remedies.

In our amicus brief filed in U.S. v. Google, we are urging the court to weigh risks to privacy, security, and public safety when evaluating proposed remedies.

Read more: www.centerforcybersecuritypolicy.org/insights-and...

27.05.2025 20:36 โ€” ๐Ÿ‘ 1    ๐Ÿ” 0    ๐Ÿ’ฌ 0    ๐Ÿ“Œ 0

@cyberseccenter is following 20 prominent accounts