James T. Shreve Discussed "262 Days Later: A Review of President Trump's Cybersecurity Policies" at the 2017 ISSA International Conference
The Information Systems Security Association (ISSA) is a not-for-profit, international organization of information security professionals and practitioners. This session discussed cybersecurity policy under the Trump Administration. This session reviewed the policies in the U.S. for both the private and public sectors, international policy, Department of Defense policy and changes with the NSA, information sharing, and major changes from the prior administration and the present one relating to cybersecurity. Specifically, attendees heard about the impact of the President's Executive Order on Cybersecurity, changes in lead agencies in the U.S. that differ from the prior PPD-41/National Cyber Incident Response Policy of DHS, expanded roles for the DOJ, DOD, and DHS, and potential impacts to our foreign partners. Who is in charge when a large breach hits the public or private sectors? What role will this White House play in these incidents? This session examined data breaches on the national stage and how the administration covered and responded to those breaches. In addition, this session reviewed the public sector changes in the White House (with or without the CISO at OMB) and how this has shaped the U.S. policy on a national and global stage. This was a non-partisan factual look at those policies that are in place, being put in place, or coming soon and provided attendees with a full picture of cybersecurity policy at the top of the house in the U.S.