Federal Agency on Cybersecurity Insurance Re-Launched

David Javaheri

Author, President, CEO, and CCO, Direct IT

Published Dec 11, 2023

The recently announced Cybersecurity Insurance and Data Analysis Working Group (CIDAWG) represents a renewed initiative aimed at providing robust support to small businesses, which are often more susceptible to cyber threats. Announced last month by Nitin Natarajan, Deputy Director of the Cybersecurity and Infrastructure Security Agency (CISA), this renewed effort serves as an enhanced iteration of its 2014 predecessor.

The primary objective of CIDAWG is to foster collaboration between industry stakeholders and government entities, with a focus on identifying effective security measures against cyber incidents and establishing standards for "good" cybersecurity in the dynamic digital landscape.

This collaborative effort involves key partners such as CISA, the Treasury Federal Insurance Office, the Volatility and Risk Institute at New York University Stern School of Business, and Stanford’s Empirical Security Research Group (ESRG.) Being an empirical lab, the ESRG actively constructs systems to analyze global datasets to gain insights into real-world behavior and challenges and designs more resilient systems and protocols.

CIDAWG is committed to ensuring that its analyses yield comprehensive and practical insights into how and where industries and organizations should be investing regarding cybersecurity.

Small businesses encounter significant cybersecurity challenges due to limited financial and technical resources, rendering them vulnerable to the potentially severe consequences of cyber threats. Natarajan highlights the escalating risk of ransomware, with reported attacks surging by 60% from 2018 to 2022 and ransom demands surpassing $1 million.

The recent “Cyber Incident Reporting for Critical Infrastructure Act of 2022” enactment bolsters CISA's capabilities. This legislation mandates organizations to report cyber incidents within 72 hours and ransom payments within 24 hours, ensuring swift responses and information sharing. Natarajan emphasizes the crucial role of prompt reporting in mitigating the ability of malicious actors to execute multiple intrusions using the same techniques.

Federal Agency on Cybersecurity Insurance Re-Launched

David Javaheri

Author, President, CEO, and CCO, Direct IT

More articles by this author

Insights from the community

Others also viewed

For CPA's, lawyers, cyber insurance firms and banks it's time to step up to the plate and collaborate on the global cyber security challenge

Proud to present on the same stage as the ‘Sharks’ to an audience of over 1,300 attendees

Local governments struggle with cyber risks

The Last Two Words You Want to Hear After A Cyber Breach Are CLAIM DENIED!

Is it time to shop for cyber insurance?

Cyber Briefing ~ 07/17/2024

Cyber Insurance is not a Cybersecurity strategy

NYDFS Cybersecurity Regulation: Rise of the CISO

Reducing Cyber Underwriting Risk Starts with the 3 “Bs”

Explore topics

MIT’s AI Risk Repository assists business owners in recognizing potential AI impacts

Sep 12, 2024

How Visa’s AI Prevented Billions of Dollars in Fraud

Aug 15, 2024

Beacon Hill’s Strategic Move to Fortify Digital Infrastructure

Jul 11, 2024

Announcing the Spring 2024 issue of New England Cyber Defender

Apr 29, 2024

Massachusetts Governor Launches AI Strategy with New Task Force

Apr 8, 2024

Welcome to the Winter 2024 edition of New England Cyber Defender Magazine

Feb 8, 2024

On the Cover, On Stage, and Online with Robert Herjavec!

Nov 13, 2023

Direct iT Invites You To Bay State Small Business Tech Day

Oct 19, 2023

Massachusetts Bill Aims to Prohibit Sale of Location Data

Sep 7, 2023

Taking Ligris from Small and Stagnant to Scalable and Thriving: How Partnering With Direct iT Helped Grow Our Business Exponentially

Aug 4, 2023