The Cybersecurity and Infrastructure Security Agency (CISA) release announces a new partnership with Stanford’s Empirical Security Research Group and focuses on analyzing the effectiveness of security controls, with a focus on ransomware. The effort begins in December.
“CISA will ask working group members to collaborate with Stanford to improve analysis of the aggregated, anonymized loss data and link it with controls effectiveness. This analysis will be a resource both for insurers to inform their risk analysis and for CISA to better understand whether efforts like the Cyber Performance Goals (CPGs) and the Secure by Design initiative are translating to reduced cyber risk exposure for organizations that adopt them.
At its core, CIDAWG will be a key part of a larger effort by CISA and federal agency partners to combat ransomware.”
Based on the release, we hope the government is focused on prioritizing efficient, tangible, short-term benefits from the growing assemblage of related programs at CISA alone.
“CISA has many tools to support this effort, including the Joint Ransomware Task Force, the Ransomware Vulnerability Warning Pilot, and the Pre-Ransomware Notification Initiative…
In addition, CISA continues to implement the Cyber Incident Reporting for Critical Infrastructure Act of 2022 (CIRCIA), which directs CISA to issue regulations requiring covered entities to report to CISA covered cyber incidents within 72 hours after the covered entity reasonably believes that the covered cyber incident has occurred and report ransom payments within 24 hours after the payment has been made.”