A former White House chief information officer is suggesting current cyber information sharing programs do little for network resiliency, FierceGovernment IT reports.
Theresa Payton said at an eIQ Networks event Wednesday that the government needs a new information sharing model instead of replicating current forums.
Payton, now president and chief executive for Fortalice, said her concern is that new cyber legislation will lead to rapid and excessive reporting.
Agencies will have one more report to deal with without a way to prioritize, she said.
Payton’s ideal method would be one where data is shared, a process that would take time in order to conduct forensics and gain insight into the right clues.
However, Payton said agencies also should not hold onto breach data too long.
An agency does not want to announce a breach before it has necessary data about how long the network has been compromised and what functions it impacts, she said.
She doubts that putting information sharing into law would result in timely sharing of threat intelligence among agencies and companies, according to Fierce.
Payton said that the Congress should look at tweaking current cyber laws if proposed legislation does not become law.