U.S. to establish new cybersecurity agencyReprints
(Reuters) — The U.S. government is creating a new agency to monitor cybersecurity threats, pooling and analyzing information on a spectrum of risks, a senior Obama administration official said on Tuesday.
The Cyber Threat Intelligence Integration Center (CTIIC) will be an "intelligence center that will 'connect the dots' between various cyber threats to the nation so that relevant departments and agencies are aware of these threats in as close to real time as possible," the official said on condition of anonymity.
President Barack Obama has moved cybersecurity to the top of his 2015 agenda after recent hacking attacks against Sony Pictures, Home Depot Inc., Anthem Inc., Target Corp., and the federal government itself.
Mr. Obama sees it as an area of cooperation with the Republican-led Congress.
Various federal agencies have cybersecurity components, including the National Security Agency, the Department of Homeland Security, the FBI and the CIA.
The Obama administration is trying to connect the agencies "so that there's one belly button for the entire U.S. government," Shawn Henry, president of cybersecurity agency CrowdStrike, said on CBS's "This Morning" program.
"That's a good strategy,” Mr. Henry said. “It's important because there's so many different pieces of intelligence coming in. You've got to collaborate and put it together.”
The CTIIC will aim for "seamless intelligence flows among centers, including those responsible for sharing with the private sector," the Obama administration official said.
Lisa Monaco, counterterrorism coordinator for The White House, will announce the new center in an address on Tuesday.
The Obama administration likens the new agency to the National Counterterrorism Center established after the Sept. 11, 2001, attacks, following criticism that U.S. intelligence agencies were not communicating with each other.
It will have a similar broad focus of providing "integrated, all-source analysis" of threats, the Obama administration official said.
"No existing agency has the responsibility for performing these functions, so we need these gaps to be filled to help the federal government meet its responsibilities in cybersecurity," the official said.
Congress has tried for years to pass legislation to encourage companies to share data from cyberattacks with the government and each other, but efforts were stymied by liability issues and privacy concerns of citizens.
Last month, Mr. Obama proposed legislation to strike a balance, offering liability protection to companies that provide information in near real time to the government, while requiring them to strip it of personal data.