The Center for Cybersecurity Policy and Law is a nonprofit (501(c)(6) organization dedicated to improving the cybersecurity ecosystem. The Center hosts several initiatives focusing on a range of critical cybersecurity issues, including the Cybersecurity Coalition, the Better Identity Coalition, the Coalition to Reduce Cyber Risk, the Enterprise Data Center Transparency and Security Initiative, and the Hardware Vulnerability Initiative.
Hacking Policy Council
The Hacking Policy Council aims to make technology safer and more transparent by facilitating best practices for vulnerability disclosure and management, as well as empowering good faith security research, penetration testing, and independent repair for security.
Hacking Policy Council
The Hacking Policy Council aims to make technology safer and more transparent by facilitating best practices for vulnerability disclosure and management, as well as empowering good faith security research, penetration testing, and independent repair for security.
Network Resilience Coalition
The Center for Cybersecurity Policy and Law (“the Center”) is building a new industry coalition, the Network Resilience Coalition, focused on increasing the resilience of the software and hardware that keep networks functioning.
Network Resilience Coalition
The Center for Cybersecurity Policy and Law (“the Center”) is building a new industry coalition, the Network Resilience Coalition, focused on increasing the resilience of the software and hardware that keep networks functioning.
DigiAmericas Alliance
Launched in 2022, the DigiAmericas Alliance aims to bring together Latin American cybersecurity professionals to promote best practices and information sharing in the region.
DigiAmericas Alliance
Launched in 2022, the DigiAmericas Alliance aims to bring together Latin American cybersecurity professionals to promote best practices and information sharing in the region.
Better Identity Coalition
Launched in February 2018, the Better Identity Coalition is a nonprofit organization focused on developing and advancing consensus-driven, cross-sector policy solutions that promote the development and adoption of better solutions for identity verification and authentication.
Better Identity Coalition
Launched in February 2018, the Better Identity Coalition is a nonprofit organization focused on developing and advancing consensus-driven, cross-sector policy solutions that promote the development and adoption of better solutions for identity verification and authentication.
Cybersecurity Coalition
Launched in February 2016, the Cybersecurity Coalition works with leaders to develop consensus-driven policy solutions that promote a vibrant cybersecurity ecosystem, support the development and adoption of innovations, and encourage organizations to take steps to improve their cybersecurity.
Cybersecurity Coalition
Launched in February 2016, the Cybersecurity Coalition works with leaders to develop consensus-driven policy solutions that promote a vibrant cybersecurity ecosystem, support the development and adoption of innovations, and encourage organizations to take steps to improve their cybersecurity.
Coalition to Reduce Cyber Risk
The Coalition to Reduce Cyber Risk (CR2) is a multi-sector, multi-national coalition, partnering with governments around the world to increase adoption of risk-based approaches to cybersecurity. Our principles for cybersecurity risk management are grounded in industry experience and a successful track record and include: clarity and consistency, risk-based, outcome focused, and agility.
Coalition to Reduce Cyber Risk
The Coalition to Reduce Cyber Risk (CR2) is a multi-sector, multi-national coalition, partnering with governments around the world to increase adoption of risk-based approaches to cybersecurity. Our principles for cybersecurity risk management are grounded in industry experience and a successful track record and include: clarity and consistency, risk-based, outcome focused, and agility.
Vulnerability Management Coalition
On September 13, the Coalition hosted its kickoff Vulnerability Management Workshop featuring speakers from across the spectrum who shared their thoughts on these important issues and discussed how stakeholders could most effectively engage to ensure that vulnerability-related policies and standards are rational and effective.
Vulnerability Management Coalition
On September 13, the Coalition hosted its kickoff Vulnerability Management Workshop featuring speakers from across the spectrum who shared their thoughts on these important issues and discussed how stakeholders could most effectively engage to ensure that vulnerability-related policies and standards are rational and effective.
Enterprise Data Center Transparency and Security Initiative
Launched in September 2019, the Initiative brought together a range of representatives from industry, civil society, and the government to discuss how advancements in secure network protocols impacts the ability of enterprises to have visibility into the traffic on their networks, alternative technical methods, and options for future research and the development of standards.
Enterprise Data Center Transparency and Security Initiative
Launched in September 2019, the Initiative brought together a range of representatives from industry, civil society, and the government to discuss how advancements in secure network protocols impacts the ability of enterprises to have visibility into the traffic on their networks, alternative technical methods, and options for future research and the development of standards.
Hardware-Centric Coordinated Vulnerability Disclosure Practices Initiative
Launched in April 2018, the Initiative brings together key stakeholders from across the technology sector to identify needs and circumstances of the hardware ecosystem, possible gaps in disclosure policy and practice, and options for future improvements.
Hardware-Centric Coordinated Vulnerability Disclosure Practices Initiative
Launched in April 2018, the Initiative brings together key stakeholders from across the technology sector to identify needs and circumstances of the hardware ecosystem, possible gaps in disclosure policy and practice, and options for future improvements.
The Future of FedRAMP
The development and release of the white paper brings together business leaders, policymakers and other stakeholders from across the technology sector to identify areas for improvement around the government’s approach to cloud security.
The Future of FedRAMP
The development and release of the white paper brings together business leaders, policymakers and other stakeholders from across the technology sector to identify areas for improvement around the government’s approach to cloud security.
Mobile Future: Pathways to Continued Improvement in Mobile Security and Privacy
As cybersecurity experts across the digital economy struggle to keep pace with ever-evolving threats, advancements in mobile security and privacy offer a vision into how security can be done properly while enabling continuous improvement. While new threats to mobile devices continue to arise, the protections in place are generally working better than in other areas of cybersecurity…
Mobile Future: Pathways to Continued Improvement in Mobile Security and Privacy
As cybersecurity experts across the digital economy struggle to keep pace with ever-evolving threats, advancements in mobile security and privacy offer a vision into how security can be done properly while enabling continuous improvement. While new threats to mobile devices continue to arise, the protections in place are generally working better than in other areas of cybersecurity…
On Demand Assurance
As technologies and our reliance on them develop, both regulators and customers want greater assurances that cloud services are aligned with expectations and desired outcomes regarding security, reliability, and resiliency. Today, these assurances are most often developed and driven from a policy and compliance centric perspective and many of the standards on which compliance relies were created…
On Demand Assurance
As technologies and our reliance on them develop, both regulators and customers want greater assurances that cloud services are aligned with expectations and desired outcomes regarding security, reliability, and resiliency. Today, these assurances are most often developed and driven from a policy and compliance centric perspective and many of the standards on which compliance relies were created…