cyber security

No the government has no right to impose cybersecurity frameworks on personal systems. There is honestly no way to enforce these laws. What is the government going to do go around and hack into all of the citizens networks and make sure they have a framework set up? Audit the entire US population? It is just as ridiculous as prohibition. No one is going to take the time to set up a private framework. Now if we are talking about private businesses then the US can’t make people use a framework, they can however implement something like the EU and their GDPR. GDPR is a set of rules designed to give EU citizens more control over their personal data. It aims to simplify the regulatory environment for business so both citizens and businesses in the European Union can fully benefit from the digital economy. Something like this would give the US a more concrete set of guidelines that can very well be implemented into a “mandatory” framework. Cybersecurity isn’t just about compliance with laws and regulation, it’s about guarding businesses from the increasing dangers of persistent threats. As importantly, an effective cybersecurity framework has to overcome barriers to continued economic growth, creating an environment that protects and nurtures innovation. Furthermore, compliance doesn’t mean secure.

Reference

Keller, N. (2019, August 19). Questions and Answers. Retrieved from https://www.nist.gov/cyberframework/questions-and-answers.

Palmer, D. (2019, May 23). What is GDPR? Everything you need to know about the new general data protection regulations. Retrieved from https://www.zdnet.com/article/gdpr-an-executive-guide-to-what-you-need-to-know/.

Raduege, H. D. (2014, August 20). The Public/Private Cooperation We Need on Cyber Security. Retrieved from https://hbr.org/2013/06/the-publicprivate-cooperation.