The Homeland Security Department on Thursday formally began sharing details of new digital threats with private business and other government agencies, a culmination of a longtime effort to improve cybersecurity.
“This is the ‘if you see something, say something’ of cybersecurity,” said Homeland Security Secretary Jeh Johnson at the agency’s Virginia-based data sharing hub, the National Cybersecurity and Communications Integration Center.
A federal law passed at the end of 2015 was intended to encourage corporations to share information about cyberthreats, making it harder for businesses to be targeted by threats used elsewhere.
The program is voluntary, and the number of companies that will participate or how effective the program will be remains unclear.
“This is a big deal,” he said. “We’re not going to launch out the gates … and have thousands of companies sharing all sorts of information. We want to make sure we’re providing value and growing.”
“As companies come on board, we’ll learn more about what’s useful,” and learn to streamline other parts, said Suzanne Spaulding, a top Homeland Security cyber official.
Information sharing and analysis centers, which industry groups operate, will likely participate in the new program, DHS officials said. Johnson said he was telling such groups, “We are open for business, on time and on schedule.”