United States Cybersecurity Policy


The Manhattan-based network infrastructure services company had already been established for 30 years. After rolling out a new website in January 2018, it wanted to promote its new network cybersecurity offerings. The first blog post Skeptical Robot Studios created for them leveraged the publicity surrounding the EU's GDPR. Two months later, the client sent an email:

"I wanted to share some good news. Looking at Google, it appears your piece on Federal Cybersecurity Regulation is the #1 and #2 search result on Google when searching for federal cybersecurity regulation or law!"

In 2017 the Securities and Exchange Commission (SEC) settled a case with the investment advisory firm RT Jones. The company had suffered a data breach that compromised the personal details of nearly 100,000 people, just months before hackers breached the SEC’s own cyber defenses.

As long ago as 2015 former U.S. President Obama called cyberattacks a “national emergency.” Both houses of Congress and both major political parties agreed on the urgency of the cyber threat by nation-states and organized crime. Though they were able to pass a data-sharing bill that year, efforts to create a unified cyber security federal mandate have stalled since then.

The vacuum that federal inactivity on the topic has left the states to act. Half of the state governments have enacted laws that define behaviors and punitive measures to protect data and networks. The patchwork of cyber coverage complicates compliance for Chief Information Security Officers (CISOs) and increases risks for companies that work across state lines.

Read the entire article here …

Like what you’ve read? Tell us a bit about your project. Click here to Request a Quote.