The document discusses the roles of government and the private sector in combating cybercrime and managing information sharing during data breaches. Experts emphasize the need for collaboration, with government facilitating education and policy while the private sector implements security measures and shares vulnerability information. There is a call for mandatory information sharing regarding breaches to enhance collective cybersecurity resilience.

1. Expertopinion
onmanaging
databreaches

2. Whatisgovernment's
roleinfightingcyber
crime?
What'stheroleofthe
privatesectorinfighting
cybercrime?

3. ScottN.Schober
Intelligentinformationleadstoactionableitemsforlaw
enforcement,andbothpublicandprivatesectorsplaya
keyroleinsharingthatinformation.Ioftenlikencyber
crimedatacluestoalargejigsawpuzzle.Everytimea
smallpieceisadded,thelargerpicturebecomesalittle
clearer.Governmentneedstofillinthemissing
piecesbysharingcyber-crimeinformation
withtwiththepublicsectorwhenrelevant,ortheycannot
expectthepublictoreciprocateandshareinformation
backtothem.Sharingentailsinvestigationinformation,
technicalprevention,protectivemeasuresandbest
practicesforallindividualsatrisk.
CybersecurityexpertandpresidentandCEO,
BerkeleyVaritronicsSystems,Inc.

4. ShahidShah
CEO,NetspectiveCommunications,andcybersecurity
andriskmanagementconsultant
Thegovernment’sroleistohelpineducating,galvanizing
thebestandbrightestandestablishingtheecosystemto
helpdeploycyber-crimefighters.Thegovernment
cannotandshouldnotbeseenashavingthe
resources,butitmustleadincreating,managing
andhelpingdeploythebodyofknowledgenecessary
ttofightcybercrime.Theprivatesectorneedstobuildthe
ecosystemsofimplementersandcrimefightersthatfollow
theknowledgebuiltbythecommunityandgalvanizedby
thegovernment.

5. MorganWright
Principalandowner,MorganWrightLLC,
andcyber-terrorismandcyber-crimeanalyst
Thegovernmenthastheabilitytosetpolicy:
policieson...intelligenceandprotectionofprivate
sectorcompaniesinsharingsimilarinformation,standards,
collaboration,acquisitionandsimilaractivities.It’snotjust
aboutbuildinghigherwallsandbetterdefenses.Ultimately,
theprivatesectorwillservetheirinterests,whichisasit
shouldbe.Theprivatesectorshouldneverberequiredto
seservetheabsoluteinterestsofgovernment,butshould
collaboratetoseewheremutualinterestsareand
focusthere.

6. EricVanderburg
Securityandtechnologyleader
Thegovernment’sroleisinbringingcyber
criminalstojusticeandtoprovidealegalframework
inwhichthosewhohavebeendamagedbecauseofa
lackofsecuritycontrolscanrecoverlosses.Theprivate
sector’sroleistoimplementreasonablesecuritycontrols
andresponsiblesecuritypracticestosafeguard
organizationalandcustomerdata.

7. Shouldtheprivate
sectorbemandatedto
shareinformationon
breachesimmediately?
Whyorwhynot?

8. ScottN.Schober
CybersecurityexpertandpresidentandCEO,
BerkeleyVaritronicsSystems,Inc.
Theprivatesectorshouldvoluntarilyshare
informationspecificallyrelatedtovulnerabilities
andcyberthreats.Whenitcomestobreaches,timeisofthe
essence,sotheyshouldalsobemandatedbylawtoshareinforma-
tionimmediatelywherenecessary.Thismandateincludesthetargets
oftheattack,thenatureofthedatabreachedandstepstoshoreup
security.Companiesarereluctanttosharetheirbreachesand
securityshortcomingsforfeartheircustomersmightleaveorfile
lawsuitsagainstthem.Theyalsofearthemarketreactionfrom
shshareholders.Regardless,thesepainfulbutnecessarypost-breach
stepsbuildresiliencetofutureattacks.Mycompanyfacedtargeted
attacksandhacksthatIinitiallywasreluctanttoshare.Iwasunderno
pressuretorevealembarrassingdetails,butIrealizedmymisfortunes
couldeducateandpreventothersfromgoingthroughthesameplight
soIwroteabookaboutit.

9. ShahidShah
CEO,NetspectiveCommunications,andcybersecurity
andriskmanagementconsultant
Yes,thereisagoodcasetobemadethatinformation
sharingonbreachesshouldbeshared–and
evenmademandatory–becausebreaches
areoften“contagious.”Justlikehumanandanimal
viruses,contagioncannotbehiddenlegallyandmustbe
sharedthroughtheCentersforDiseaseControl(CDC).
IthinkthIthinkthattheprivatesectorshouldberequired,for
certainkindsofbreachesbutnotnecessarilyall,to
shareinformationthroughacyberCDC.

10. MorganWright
Principalandowner,MorganWrightLLC,
andcyber-terrorismandcyber-crimeanalyst

11. EricVanderburg
Securityandtechnologyleader
Notificationsalonedolittlemorethanhurtshareholder
value.Cybersecurityproblemscan’tberegulatedinthe
samewayascarbonemissions.Informationshould
besharedonanongoingbasis,notonlywhen
thereisabreach.Inthisway,anomaliescanbe
ddetectedwhileattacksarestillbeingimplementedinstead
ofaftertheyhavebeensuccessfullydeployed.Already,
manycompaniesareutilizingcloud-basedsolutionsthat
aggregatethedatafrommanycustomerstoimprove
securityforall.Thesearethetypesofsolutionswe
needmoreof,fortheyidentifyenemiesratherthan
casualties.

12. Wantto
hearmore?
Visit
ibm.co/cyberthreatanalysis
©CopyrightIBMCorporation2016.IBM,theIBMlogoandibm.comaretrademarksofInternationalBusiness
MachinesCorp.,registeredinmanyjurisdictionsworldwide.Otherproductandservicenamesmightbe
trademarksofIBMorothercompanies.AcurrentlistofIBMtrademarksisavailableontheWebat“Copyright
andtrademarkinformation”atwww.ibm.com/legal/copytrade.shtml.