Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Threat Intelligence

9/30/2016
01:00 PM
Dark Reading
Dark Reading
Products and Releases
50%
50%

ISAO Standards Organization To Release Initial Voluntary Guidelines For ISAOs

ISAO documents in response to Executive Order 13691 available Friday, September 30 on ISAO.org

San Antonio, TX (September 29, 2016)The Information Sharing and Analysis Organization Standards Organization (ISAO SO) will publish four initial voluntary guideline documents on Friday, September 30 on ISAO.org. These publications were developed with the support of over 160 industry experts in response to Presidential Executive Order 13691 to provide guidelines for robust and effective information sharing and analysis related to cybersecurity risks, incidents, and best practices. The initial documents to be published Friday will include:

  • ISAO 100-1, Introduction to ISAOs:This publication offers an overview of Information Sharing and Analysis Organizations.  It also previews the full ISAO document series and the scope of future guidelines and standards.
  • ISAO 100-2, Guidelines for Establishing an ISAO: ISAO 100-2 provides a set of guidelines to create an ISAO and guides readers through the most critical considerations to creating an effective organization.
  • ISAO 300-1, Introduction to Information Sharing:This document describes a conceptual framework for information sharing concepts, the types of cybersecurity-related information an ISAO may want to share, ways an organization can facilitate information sharing, as well as privacy and security concerns to be considered.
  • ISAO 600-2, U.S. Government Relations, Programs, and Services: ISAO 600-2 addresses relevant federal laws and regulations regarding cybersecurity information sharing within the United States, as well as state and local perspectives.  It also includes a comprehensive listing of available government resources to assist ISAOs and their members.

“The information sharing ecosystem takes a big step forward with Friday’s publication,” explained Dr. Greg White, Executive Director of the ISAO SO. “The ISAO SO, supported by a dedicated cadre of volunteers, aims to grow the information sharing community and equip it with the tools needed to improve the cybersecurity posture of all communities of interest across the nation. The publication of these documents represents the collaboration of over 160 experts from industry, government, and academia, combined with the input and feedback of the public.”

The ISAO SO, led by the University of Texas at San Antonio (UTSA) with support from LMI and R-CISC, is a non-governmental organization established in October 2015 to facilitate the implementation of Presidential Executive Order 13691, “Promoting Private Sector Cybersecurity Information Sharing.” The ISAO SO created Working Groups composed of industry, government and academic experts to lead the development of the guideline publications.

“These publications provide the cornerstones to build out an information sharing ecosystem at unprecedented scale,” said Rick Lipsey, Deputy Director of the ISAO SO.  “However, they are just the beginning.  The ISAO SO is helping the community to evolve a consensus-based corporate body of knowledge.  We anticipate updating and expanding these guidelines based on feedback from their implementation. The ISAO Series will evolve in the coming months to serve the community with additional publications that will allow all organizations and individuals to better defend themselves against emerging cyber threats.”

Public feedback was vital to the creation of these publications. Working Groups received comments and feedback from public online meetings, in-person public forums and Request for Comment periods for previous drafts. Comments were considered and adjudicated in an open and transparent consensus-based development process.

“The collaboration and input by the tremendous team of experts that have contributed to the Working Groups is a testament to the need to work together,” said Brian Engle, Advisory Partner for the ISAO SO. “The issues of cybersecurity and the threats to our nation and the global economy require the sharing of information in ways that ISAO’s will be well suited to accomplish. As the leader of a sharing organization that formed almost two years ago, I can say that the considerations provided by these initial guidelines will be extremely helpful in supporting the success of forming ISAO’s, and the continued work of the ISAO SO will be pivotal in the development of the cybersecurity information sharing ecosystem."

The ISAO SO will host its next online public meeting on October 20th at 1pm CT.  This meeting will address upcoming publications, a national information sharing conference for 2017, and feature a question and answer session with ISAO SO Leadership.  For more information about ISAOs and the ISAO Standards Organization, go to https://www.ISAO.org.

About the ISAO SO

The ISAO Standards Organization is a non-governmental organization established October 1, 2015, led by the Center for Infrastructure Assurance and Security at The University of Texas at San Antonio (UTSA) with support from LMI and the Retail Cyber Intelligence Sharing Center. The ISAO SO’s mission is to improve the Nation’s cybersecurity posture by identifying standards and guidelines for robust and effective information sharing and analysis related to cybersecurity risks, incidents and best practices. The ISAO Standards Organization works with existing information sharing organizations, owners and operators of critical infrastructure, relevant agencies, and other public and private sector stakeholders through a consensus-driven standards development process to identify a common set of voluntary standards and guidelines for the creation and functioning of ISAOs. 

 

Recommended Reading:

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
News
Inside the Ransomware Campaigns Targeting Exchange Servers
Kelly Sheridan, Staff Editor, Dark Reading,  4/2/2021
Commentary
Beyond MITRE ATT&CK: The Case for a New Cyber Kill Chain
Rik Turner, Principal Analyst, Infrastructure Solutions, Omdia,  3/30/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
2021 Top Enterprise IT Trends
We've identified the key trends that are poised to impact the IT landscape in 2021. Find out why they're important and how they will affect you today!
Flash Poll
How Enterprises are Developing Secure Applications
How Enterprises are Developing Secure Applications
Recent breaches of third-party apps are driving many organizations to think harder about the security of their off-the-shelf software as they continue to move left in secure software development practices.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2021-30477
PUBLISHED: 2021-04-15
An issue was discovered in Zulip Server before 3.4. A bug in the implementation of replies to messages sent by outgoing webhooks to private streams meant that an outgoing webhook bot could be used to send messages to private streams that the user was not intended to be able to send messages to.
CVE-2021-30478
PUBLISHED: 2021-04-15
An issue was discovered in Zulip Server before 3.4. A bug in the implementation of the can_forge_sender permission (previously is_api_super_user) resulted in users with this permission being able to send messages appearing as if sent by a system bot, including to other organizations hosted by the sa...
CVE-2021-30479
PUBLISHED: 2021-04-15
An issue was discovered in Zulip Server before 3.4. A bug in the implementation of the all_public_streams API feature resulted in guest users being able to receive message traffic to public streams that should have been only accessible to members of the organization.
CVE-2021-30487
PUBLISHED: 2021-04-15
In the topic moving API in Zulip Server 3.x before 3.4, organization administrators were able to move messages to streams in other organizations hosted by the same Zulip installation.
CVE-2020-36288
PUBLISHED: 2021-04-15
The issue navigation and search view in Jira Server and Data Center before version 8.5.12, from version 8.6.0 before version 8.13.4, and from version 8.14.0 before version 8.15.1 allows remote attackers to inject arbitrary HTML or JavaScript via a DOM Cross-Site Scripting (XSS) vulnerability caused ...