I have written in this space of a pattern of executive actions on cybersecurity coming in February around Valentine’s Day. The Obama administration issued several cybersecurity executive orders in successive Februaries. While the current administration did not get out its first cybersecurity order in time to match the February pattern – much less as a Valentine’s Day offering – a close version leaked around the same time last year.
Last week marked the fourth anniversary of a keystone of federal cybersecurity policies, the Cybersecurity Framework issued by the National Institute of Standards Technology. Here at Brookings, we held a public forum to review what the framework has achieved and what lies ahead to improve cybersecurity preparedness and resiliency.
The week of Valentine’s Day did not feature any new cybersecurity executive orders or policy pronouncements from