Insights & Research

Donna Dodson and Mark Bohannon have been named the inaugural fellows for Center for Cybersecurity Policy and Law.

The UK’s Product Security and Telecoms Infrastructure Act comes into effect today and If you are doing business in the UK and are a manufacturer or retailer of consumer smart products find out the implications.

In the latest Distilling Cyber Policy podcast episode, Lee Licata, from the Department of Justice, and Grant Dasher, from the Cybersecurity and Infrastructure Agency discuss the recent data privacy executive order with our hosts.

A new report from the Digi Americas Alliance, written in collaboration with Duke University, looks at cyber readiness in Latin America and some of the pressing challenges these nations are facing.

The federal government is one step closer to requiring approximately 315,000 businesses to report cyber incidents and ransomware payments. 

The NIST Privacy Framework is getting a little "Spring Cleaning." Officials from NIST's Privacy Engineering Program updated participants on updated to the Privacy Framework and other projects at an event last week.

The Cybersecurity Coalition, U.S. Chamber of Commerce, and 23 other organizations have requested a 30-day extension to the comment period for the Cyber Incident Reporting for Critical Infrastructure Act (CIRCIA) from CISA.

At CyberNext Brussels, the Cybersecurity Coalition released an EU Policy Roadmap that would help ensure Europe's collective digital resilience.

Two reports released by the U.S. government provide important insights into the state of the ransomware threat stating that it is still costly and impactful and a staple national security risk.

CISA published a final version of the Secure Software Development Attestation Common Form, which quires software vendors to sign the form, self-attesting that they comply with secure software practices.