DHS Creates Cyber ​​Safety Review Board, Focuses On Log4j Exploit For Its First Report

The United States Department of Homeland Security on Thursday announced the creation of a new body, the Cyber ​​Safety Review Board (CSRB), to investigate major cybersecurity events.

The 15-member board will be made up of a mix of senior officials from agencies such as the NSA, FBI and CISA, and government departments including the Department of Defense and the Department of Justice, along with private sector executives from companies such as Google. , Microsoft and Verizon.

“The Biden-Harris administration has taken bold steps to meaningfully improve our cybersecurity resilience,” said Homeland Security Secretary Alejandro N. Mayorkas. “At the direction of the president, DHS establishes the Cyber ​​Safety Review Board to thoroughly review past events, ask the tough questions, and make improvements in the private and public sectors.”

The CSRB’s mandate is to investigate key cybersecurity events affecting government and industry and prepare reports with recommendations for improving the country’s cybersecurity resilience.

It was created as part of the roadmap set out in President Biden’s executive order to improve the country’s cybersecurity, which also states that the board must begin making recommendations within 90 days of its inception.

The initial review by the board will focus on vulnerabilities related to the Log4j library, a serious and widespread security flaw discovered in December 2021.

The next report, due by summer 2022, will include an assessment of the vulnerability, including threat activity and known effects, as well as measures taken by both the government and the private sector to mitigate its impact.

It will also make recommendations for improving cybersecurity policies based on lessons learned from handling the Log4j vulnerability.

“This is a once-in-a-generation opportunity to reshape how we learn from cyber events and improve for the future,” said DHS Undersecretary for Policy Robert Silvers.

Silvers will serve as chairman of the CSRB and will be joined by Heather Adkins, Google’s chief security officer, as deputy chairman.

Related Posts

Leave a Reply

Your email address will not be published.