The impact of an executive order on cybersecurity

Order could be issued as early as this month.

The Obama administration is crafting an executive order designed to improve the nation's cybersecurity, particularly at facilities with critical infrastructure. Although the order is still being developed, it could be issued as early as this month, and it's not too soon for enterprises to consider what it might mean for them, writes Brian Prince at Dark Reading.

Proponents of expanded cybersecurity rules out of the government say that the order would establish voluntary security best practices, but some experts are wary that it would create a checklist security approach rather than an approach that takes into consideration the unique security needs of each organization, Prince reports.

More helpful than a checklist would be information on current threats, details on other organization's security best practices and a set of guiding principles for security, says Jose Granado at Ernst & Young.

An executive order wouldn't likely deal with the information sharing provision that had been detailed in the failed Cybersecurity Act of 2012, Prince notes.

For more:
- see Brian Prince's article at Dark Reading

Related Articles:
Cyber bill would establish voluntary security measures for companies
Is 'cyber war' an imaginary hobgoblin?
Feds need to elucidate cyber threat before demanding more power