SAN ANTONIO–The Information Sharing and Analysis Organization Standards Organization (ISAO SO) has published four initial voluntary guideline documents on ISAO.org
The publications were developed with the support of over 160 industry experts in response to Presidential Executive Order 13691 to provide guidelines for robust and effective information sharing and analysis related to cybersecurity risks, incidents, and best practices, the organization said.
The initial documents to be published will include:
- ISAO 100-1, Introduction to Information Sharing and Analysis Organizations: This publication offers an overview of Information Sharing and Analysis Organizations. It also previews the full ISAO document series and the scope of future guidelines and standards.
- ISAO 100-2, Guidelines for Establishing an Information Sharing and Analysis Organization: ISAO 100-2 provides a set of guidelines to create an ISAO and guides readers through the most critical considerations to creating an effective organization.
- ISAO 300-1, Introduction to Information Sharing: This document describes a conceptual framework for information sharing concepts, the types of cybersecurity-related information an ISAO may want to share, ways an organization can facilitate information sharing, as well as privacy and security concerns to be considered.
- ISAO 600-2, U.S. Government Relations, Programs, and Services: ISAO 600-2 addresses relevant federal laws and regulations regarding cybersecurity information sharing within the United States, as well as state and local perspectives. It also includes a comprehensive listing of available government resources to assist ISAOs and their members.
“The ISAO SO, supported by a dedicated cadre of volunteers, aims to grow the information sharing community and equip it with the tools needed to improve the cybersecurity posture of all communities of interest across the nation,” said Dr. Greg White, executive director of the ISAO SO. “The publication of these documents represents the collaboration of over 160 experts from industry, government, and academia, combined with the input and feedback of the public.”
The ISAO SO, led by the University of Texas at San Antonio (UTSA) with support from LMI and R-CISC, is a non-governmental organization established in October 2015 to facilitate the implementation of Presidential Executive Order 13691, “Promoting Private Sector Cybersecurity Information Sharing.” The ISAO SO created Working Groups composed of industry, government and academic experts to lead the development of guidelines.
The ISAO SO will host its next online public meeting on Oct. 20 at 1p.m. CT. This meeting will address upcoming publications, a national information sharing conference for 2017, and feature a question and answer session with ISAO SO Leadership. For more information about ISAOs and the ISAO Standards Organization, go to ISAO.org