White House launches new cyber security center: Will businesses cooperate?

The new Cyber Threat Intelligence Integration Center will aim to coordinate the United States government's response to cyberattacks, but it will need help from businesses to be effective.

Larry Downing/Reuters/File
A Department of Homeland Security worker listens to President Obama talk at the National Cybersecurity and Communications Integration Center (NCCIC) in Arlington, Va., Jan. 13. The US government is creating a new agency to monitor cybersecurity threats, pooling and analyzing information on a spectrum of risks, a senior Obama administration official said on Tuesday.

A recent string of cyberattacks has served as a wakeup call for the Obama administration: The United States government needed a centralized body responsible for coordinating the country's cybersecurity response.

On Tuesday, the administration announced the creation of the Cyber Threat Intelligence Integration Center (CTIIC). The agency is modeled on the National Counterterrorism Center, which was created after 9/11 to be a central point of coordination for terror intelligence.

America's cyber capabilities are spread among the National Security Agency, the Department of Homeland Security, the Federal Bureau of Investigation, Central Intelligence Agency, and the Pentagon's Cyber Command. The CTIIC aims to connect the agencies’ capabilities and create a center to pool data on cyber breaches.

The Obama administration wants to make sure “there’s one belly button for the entire US government,” said Shawn Henry, president of CrowdStrike cybersecurity agency, on the CBS “This Morning.”  

In recent years, cyberthreats have become more frequent and sophisticated. In 2012 Iranian hackers carried out several disruptive computer attacks against US banks and other companies, including JPMorgan Chase and Bank of America. In October 2014, hackers allegedly working for the Russian government breached computer networks in the White House, albeit without gaining access to classified networks. And recent attacks against companies such as Anthem Inc. health insurance and Target Corp. shed light on the vulnerability of sensitive consumer data.

But the cyberattack against Sony Pictures Entertainment, attributed by the White House to North Korean hackers, was a "game changer," said Lisa Monaco, President Obama’s homeland security and counterterrorism adviser, on Tuesday.

The hack resulted in the exposure of sensitive e-mails and wiped computers clean of data. It also marked the first time the United States openly laid blame for a cyberattack on a foreign government.

Officials from both sides of the aisle are now supporting the initiative to streamline the government’s cybersecurity capabilities.

“Anything that can be done to improve coordination within the federal government will help to better protect our nation from cyber breaches,” said Rep. Michael McCaul (R) of Texas, who chairs the House Committee on Homeland Security, to The Wall Street Journal.

The CTIIC, however, faces the same problem that previous government cybersecurity ventures have faced: convincing private companies to participate by sharing information.

Following the 2013 leaks by former NSA contractor Edward Snowden, many big tech companies lost trust in the government. Businesses in other sectors of the economy have been wary of government intrusion.

But officials believe the new center will only be effective with the buy-in of the private sector.

“To truly safeguard Americans online ... we are going to have to work in lockstep with the private sector,” Monaco said Tuesday.

Obama will push this agenda in a cybersecurity summit with business leaders in California on Friday, but some aren’t sure it will be an easy task.

“The world outside the US is concerned that the US spies on them, which means that the new center will get minimal cooperation from any company which does business outside the US,” wrote Adam Shostack, a former employee of Microsoft’s security team, on a blog associated with his 2008 book on information security.  

Obama will need to stress the importance of protecting consumer privacy if he is going to get the companies back on board.

The CTIIC will be a new division of the Office of the Director of National Intelligence, an entity already responsible for coordinating intelligence from various agencies. The center will begin with around 50 staff members and a budget of $35 million, The Washington Post reported.

You've read  of  free articles. Subscribe to continue.

Dear Reader,

About a year ago, I happened upon this statement about the Monitor in the Harvard Business Review – under the charming heading of “do things that don’t interest you”:

“Many things that end up” being meaningful, writes social scientist Joseph Grenny, “have come from conference workshops, articles, or online videos that began as a chore and ended with an insight. My work in Kenya, for example, was heavily influenced by a Christian Science Monitor article I had forced myself to read 10 years earlier. Sometimes, we call things ‘boring’ simply because they lie outside the box we are currently in.”

If you were to come up with a punchline to a joke about the Monitor, that would probably be it. We’re seen as being global, fair, insightful, and perhaps a bit too earnest. We’re the bran muffin of journalism.

But you know what? We change lives. And I’m going to argue that we change lives precisely because we force open that too-small box that most human beings think they live in.

The Monitor is a peculiar little publication that’s hard for the world to figure out. We’re run by a church, but we’re not only for church members and we’re not about converting people. We’re known as being fair even as the world becomes as polarized as at any time since the newspaper’s founding in 1908.

We have a mission beyond circulation, we want to bridge divides. We’re about kicking down the door of thought everywhere and saying, “You are bigger and more capable than you realize. And we can prove it.”

If you’re looking for bran muffin journalism, you can subscribe to the Monitor for $15. You’ll get the Monitor Weekly magazine, the Monitor Daily email, and unlimited access to CSMonitor.com.