Connecticut Legislature Considers Incentivizing Adoption of Cybersecurity Best Practices

Bill includes the use of the CIS Controls as a safe harbor for organizations adopting cybersecurity best practices

News provided by

Center for Internet Security

22 Mar, 2021, 08:42 ET

HARTFORD, Conn., March 22, 2021 /PRNewswire/ -- The Center for Internet Security, Inc. (CIS®) testified before the Commerce Committee of the State of Connecticut General Assembly last Thursday at a hearing to consider a bill that would incentivize the voluntary adoption of cybersecurity best practices. The bill, introduced by Representative Caroline Simmons, provides a safe harbor for organizations that implement reasonable cybersecurity controls, including industry recognized cybersecurity frameworks such as the National Institute of Standards and Technology Cybersecurity Framework (NIST CSF) and the CIS Controls®.

CIS Executive Vice President & General Manager, Security Best Practices, Curtis Dukes testified about the importance of implementing the CIS Controls to protect citizens and organizations from cyber-attacks.

"Representative Simmons's bill would establish a legal safe harbor for organizations in Connecticut that voluntarily adopt certain recognized cybersecurity best practices like the CIS Controls and implement a written information security program," said Dukes. "It creates an incentive to do the right thing – to improve cybersecurity according to a recognized industry standard – and receive an additional benefit in the bargain."

The CIS Controls are a set of internationally-recognized, prioritized actions that form the foundation of basic cyber hygiene and essential cyber defense. They act as a blueprint for system and network operators to improve cyber defense by identifying specific actions to be done in a priority order, based on the current state of the global cyber threat. The CIS Controls are developed by an international community of volunteer experts and are available for free on the CIS website.  

If approved, the bill would become law on October 1, 2021.

More information about the bill and Mr. Duke's testimony can be found on the Connecticut General Assembly website.

About CIS:
The Center for Internet Security, Inc. (CIS®) makes the connected world a safer place for people, businesses, and governments. We are a community-driven nonprofit, responsible for the CIS Controls® and CIS Benchmarks, globally recognized best practices for securing IT systems and data. We lead a global community of IT professionals to continuously refine these standards to proactively safeguard against emerging threats. Our CIS Hardened Images® provide secure, on-demand, scalable computing environments in the cloud. CIS is home to the Multi-State Information Sharing and Analysis Center® (MS-ISAC®), the trusted resource for cyber threat prevention, protection, response, and recovery for U.S. State, Local, Tribal, and Territorial (SLTT) government entities, and the Elections Infrastructure Information Sharing and Analysis Center® (EI-ISAC®), which supports the cybersecurity needs of U.S. elections offices. To learn more, visit CISecurity.org or follow us on Twitter: @CISecurity.

Contact:
Autum Pylant
[email protected] 
518-266-3495

SOURCE Center for Internet Security

Related Links

http://www.cisecurity.org

Also from this source

Industry Leaders Collaborate on New Cybersecurity Offering

Expanded Cybersecurity Partnership with CrowdStrike Further Protects the Public Against Potential Attacks

Explore

More news releases in similar topics

PRN Top Stories Newsletters

Sign up to get PRN’s top stories and curated news delivered to your inbox weekly!

Thank you for subscribing!

By signing up you agree to receive content from us.
Our newsletters contain tracking pixels to help us deliver unique content based on each subscriber's engagement and interests. For more information on how we will use your data to ensure we send you relevant content please visit our PRN Consumer Newsletter Privacy Notice. You can withdraw your consent at any time in the footer of every email you'll receive. Mit Ihrer Anmeldung erklären Sie sich damit einverstanden, Inhalte von uns zu erhalten.
Unsere Newsletter enthalten Zählpixel, die die Lieferung einzigartiger Inhalte in Bezug auf das Abonnement und die Interessen der einzelnen Abonnenten ermöglichen. Weitere Informationen über die Verwendung Ihrer Daten im Hinblick auf die Zusendung von relevanten Inhalten, finden Sie in unserer PRN Consumer Newsletter Privacy Notice. Ihre Zustimmung können Sie jederzeit in der Fußzeile jeder erhaltenen E-Mail widerrufen. En vous inscrivant à la newsletter, vous consentez à la réception de contenus de notre part.
Notre newsletter contient des pixels espions nous permettant la fourniture à chaque abonné, d’un contenu unique en lien avec ses souscriptions et intérêts. Pour de plus amples informations sur l’utilisation faite de vos données en vue de l’envoi des contenus concernés, nous vous invitons à consulter la politique de confidentialité disponible à partir du lien suivant PRN Consumer Newsletter Privacy Notice. Vous pouvez à tout moment revenir sur votre consentement par le biais des informations situées au bas de chaque e-mail reçu. Регистрирайки се, Вие се съгласявате да получавате информационно съдържание от нас. Нашите бюлетини съдържат проследяващи пиксели, които ни помагат да предоставяме уникално съдържание въз основа на ангажираността и интересите на всеки абонат. За повече информация относно начина, по който ще използваме Вашите данни, за да гарантираме, че Ви изпращаме подходящо съдържание, моля, направете справка с нашето Уведомление за поверителност на потребителския бюлетин на PRN. Можете да оттеглите съгласието си по всяко време в долния колонтитул на всеки от имейлите, които ще получите.