Just released: How to raise venture capital in 2023

Download

Why Startups Should Care About the New US Cybersecurity Framework

TL:DR

Key Takeaways

Carl Niedbala - Founder Shield
Carl Niedbala

Managing Partner; COO & Co-Founder

 

With potentially 70 million effected by the recent Target data breach, the US government thinks it’s time to talk about the elephant in the room for the tech world: Cybersecurity protocol.

Earlier this week, the government released the new US cybersecurity “framework”, the creation of which was mandate by president Obama through an executive order earlier this year.  The framework was drafted by the National Institute of Standards and Technology.

You can access the document here if you’re really curious.  If you’re reading this blog, however, it’s likely not worth your time…for now, that is. Why? The new framework mainly deals with technology companies working on a massive industrial scale, such as energy, financial services, communications companies…basically the 16 sectors the government has identified as critical to our infrastructure.  This makes sense when looking at the tech world from a government viewpoint in a post-9/11 world.

While it’s clear that the government is taking a top-down approach at tackling these issues, the startup world won’t be far behind.  Silicon Valley, though falling outside of that “critical infrastructure” zone, clearly plays a vital role in the economy of the country.  Even if this document was targeted at the startup world, I still wouldn’t suggest taking a read.  It was highly conceptual and lacking any clear path to action items…not really an enjoyable read for startup folks!

So what does the new cybersecurity document matter for startups?  As the document gets expanded and implemented, deliverable goals will likely start to fall into place.  Typically, documents like this will be met with some confusion at first, and as they wind their way through the court system after every related dispute, more and more clarity will begin to appear.  It may take a while, but we will probably reach a point where more concrete standards with visible and attainable checkpoints and goals fall into place for the greater tech world.

Given the US cybersecurity framework’s origins (and lack of Congressional input), this new framework doesn’t really have the full effect of a law right now.  That’s why the administration is figuring out what sort of incentives it can craft to get the targeted industries on board with the developing standards.  One idea being thrown around involves perks related to obtaining cyber liability insurance.  This is still very tentative, but we may see a time where cyber liability insurance becomes the norm rather than a nice add-on.  We’re already seeing more and more legal documents (client/vendor contracts, etc) here at Founder Shield requiring this coverage, so it’s safe to say that this idea is certainly trending in the private sector.

Founders can put this on the back burner for now, but don’t be surprised if this comes back around in the near future.  It will be interesting to see how this framework evolves and expands in the near future.

360 Risk Assessment

Understand how your insurance coverage & risk management measures up.

Related Articles

data breach 2024
October 1 • Cyber Liability

Top 10 Cyber Security Data Breaches of 2024

Cybersecurity under attack in 2024! Discover the top 10 data breaches that rocked the world. Learn how major companies fell victim to cybercriminals. Understand the risks and take action to protect your business from cyber threats.

supply chain disruptions
August 27 • Cyber Liability

Cyber Attacks & Supply Chain Disruptions: Startup’s Worst Enemy?

Explore the evolving threat landscape for supply chain disruptions, mitigation strategies, and the importance of risk management in today’s volatile business environment.

cyber insurance pricing trends 2024
March 13 • Cyber Liability

Cyber Insurance Pricing Trends 2024

Uncertain about cyber insurance costs in 2024? Our article explores pricing trends, expert predictions on rate increases, and strategies to potentially reduce your cyber insurance premium.

cyber liability insurance premiums
March 4 • Cyber Liability

7 “Must Haves” For Cyber Liability Insurance in 2024

With cyber liability insurance premiums rising, business leaders must have the inside scoop to keep costs low. Our partners at Blacksmith InfoSec delve into those tips and tricks.

Cybersecurity Data Breaches
November 9 • Cyber Liability

Top 10 Cybersecurity Data Breaches of 2023

Today’s digital landscape is frightening for business leaders. Here’s a glimpse into some of the most cringe-worthy data breaches in 2023 — plus, how to avoid them.

Cyber Insurance Pricing Trends
July 19 • Cyber Liability

Cyber Insurance Pricing Trends 2023

After a hard-hit 2022, let’s explore the lessons learned, what currently impacts the cyber market, and cyber insurance pricing trends to expect in the future.