The American National Standards Institute (ANSI) is seeking public comments on proposed guidelines regarding cybersecurity information sharing. All members and interested stakeholders are encouraged to comment on the nine recently released Request for Comment (RFC) documents regarding the development of effective voluntary standards and guidelines to foster information sharing on cybersecurity risks and incidents among private-sector entities and the federal government.
Reflecting the work of the Information Sharing and Analysis Organization (ISAO) Standards Organization (SO), the RFC documents were developed in response to the White House’s Executive Order 13691, Promoting Private Sector Cybersecurity Information Sharing.
Last year, President Obama issued an order to encourage and promote sharing of cybersecurity threat information within the private sector and between the private sector and government.
The development of these voluntary standards and guidelines will help companies work alongside the federal government to quickly identify and safeguard against cyber threats. The RFC documents, which span a range of topics represented by the ISAO SO’s six Standards Working Groups (SWGs), are still under development, and ANSI is encouraging suggestions from stakeholders at this stage.
Comments can be submitted here and are due by June 17.
Based on the comments received, the ISAO SO may elect to post additional RFC documents before the final standards and guidelines are made available under the Published Products page on the website.
A public meeting has also been scheduled for May 19 in Anaheim, California, to discuss these draft cybersecurity guidance documents. For more information about the meeting click here, or email contact@isao.org.