Cybersecurity

Comments to the SEC Regarding Its Proposed Rule on Cybersecurity Risk Management, Strategy, Governance, and Incidence Disclosure
ITIF supports SEC’s efforts to ensure publicly traded companies disclose relevant information on their cybersecurity practices and material cybersecurity incidents, which would enable investors to make more informed decisions, in line with existing SEC disclosure requirements. This type of transparency will not only help investors make more informed decisions, but it should also incentivize companies to adopt cybersecurity best practices.
Read More >>

For a menu of actionable ideas for policymakers related to cybersecurity, see ITIF’s “Tech Policy To-Do List.”

Cybersecurity
Check a box to narrow search for individual content items that cover numerous issues.
May 6, 2022
Comments to the SEC Regarding Its Proposed Rule on Cybersecurity Risk Management, Strategy, Governance, and Incidence Disclosure
ITIF supports SEC’s efforts to ensure publicly traded companies disclose relevant information on their cybersecurity practices and material cybersecurity incidents, which would enable investors to make more informed decisions, in line with existing SEC disclosure requirements. This type of transparency will not only help investors make more informed decisions, but it should also incentivize companies to adopt cybersecurity best practices.
March 8, 2022
To Meet Tech Mandates, Federal Agencies Should Leverage Best-In-Class Technology That Delivers on Both Customer Experience and Cybersecurity
Last year, President Biden issued two executive orders (EOs) that mandated federal agencies invest in cybersecurity and customer experience (CX).
December 16, 2021
What If Russia’s Most Successful Cyberattack Is Hiding in Plain Sight?
As the United States and the European Union continue to work on building back better the transatlantic relationship in the coming year, they should make resolving data flows a top priority.
November 18, 2021
The Internet Needs a “Bill of Responsibilities”
The Internet has had quite a few declarations of independence and calls for personal freedom over the years. But glaringly absent has been any real consideration of personal responsibilities or community obligations.
October 25, 2021
Comments to the U.S. Commerce Department on Deterring Malicious Cyber-Enabled Threats to IaaS Cloud Services
While ITIF agrees with the goal of the executive order—to ensure that foreign actors do not exploit U.S. cloud computing resources for malicious cyber activities—the proposed solutions have multiple deficiencies which would not only render them ineffective, but also undermine the competitiveness of U.S. cloud computing providers.
December 11, 2020
It’s Past Time for the Federal Government to Offer Electronic IDs
The ongoing COVID-19 pandemic has accelerated the widespread adoption of digital technologies that make
November 18, 2020
New Draft Resolution on Encryption Casts Doubt on EU’s Commitment to Data Protection
There’s no way to give law enforcement and other good actors access to encrypted communications without also weakening encryption and giving criminals and malicious state actors easier access to sensitive data.
September 2, 2020
Shifting Safely to Online Learning Means Investing in Cyber
As schools embark on a year of virtual or hybrid learning, hackers are seeking to exploit weaknesses in systems largely unprepared to fend off attacks. States must take the lead by updating technology and training users.
July 17, 2020
Country-of-Origin Approach to Drones Won’t Address National Security Concerns
As China emerges as a global economic and technological leader, what threats do its products pose to U.S. national security?
July 14, 2020
The Problem With Banning End-to-End Encryption
ITIF hosted a discussion on the implications of current legislative proposals, the efficacy and feasibility of creating “backdoors” for law enforcement to access encrypted data, and the impact these requirements would have on law-abiding American citizens and businesses.

Pages