Virtual Event Today: Cyber AI & Automation Summit - Register/Login Now
Connect with us

Hi, what are you looking for?


Management & Strategy

DHS Connects Government, Private Sector in New Cyber Safety Review Board

Long-awaited public-private initiative established to evaluate nation’s cybersecurity and improve resilience

Long-awaited public-private initiative established to evaluate nation’s cybersecurity and improve resilience

Several government and private sector organizations in the United States have joined forces for the Department of Homeland Security’s first ever Cyber Safety Review Board, whose goal is to boost the nation’s cybersecurity.

The DHS’s Cyber Safety Review Board (CSRB) has been established as instructed by the executive order signed by President Joe Biden in May 2021 to improve cyber defenses.

That executive order represents the foundation for several cybersecurity initiatives, including two that were announced last month: a memorandum focused on boosting the cybersecurity of National Security Systems, and a federal zero trust strategy.

The DHS announced the launch of the CSBR roughly a week after lawmakers expressed concern that the board had still not been created eight months after the executive order was signed.

The CSRB has been tasked with reviewing and assessing major cybersecurity events in an effort to help the government, industry and security community better protect the country’s networks and infrastructure. The board will also “deliver strategic recommendations to the President and the Secretary of Homeland Security.”

The initial plan was for the board to investigate the SolarWinds hack. However, the DHS revealed that it will first review the recently disclosed Log4j vulnerabilities, which have been exploited by profit-driven cybercriminals and state-sponsored threat actors. The first report is expected to be completed this summer and, in addition to a review and assessment, it will contain recommendations for improving security and incident response based on lessons learned from this incident.

A public version of the report is expected to be made available, as well as other advice, information, and recommendations from the board, but the information that is made public may be redacted to protect sensitive information, the DHS said.

Advertisement. Scroll to continue reading.

Robert Silvers, under secretary for policy at the DHS, will serve as chair of the board and Heather Adkins, senior director for security engineering at Google, will serve as deputy chair.

Other members include representatives of the Cybersecurity and Infrastructure Security Agency (CISA), Department of Justice, Department of Defense, Office of Management and Budget, Office of the National Cyber Director, National Security Agency, Federal Bureau of Investigation, Center for Internet Security, Luta Security, CrowdStrike, Microsoft, Verizon, and Palo Alto Networks.

“The CSRB does not have regulatory powers and is not an enforcement authority,” the DHS noted.

Related: Biden Extends Executive Order on Cyberattack Sanctions

Related: 3 Key Questions for CISOs on the Wave of Historic Industrial Cybersecurity Legislation

Related: New Executive Order Aims to Protect U.S. Power Grid From Backdoored Equipment

Written By

Eduard Kovacs (@EduardKovacs) is a managing editor at SecurityWeek. He worked as a high school IT teacher for two years before starting a career in journalism as Softpedia’s security news reporter. Eduard holds a bachelor’s degree in industrial informatics and a master’s degree in computer techniques applied in electrical engineering.

Click to comment

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Join us as we delve into the transformative potential of AI, predictive ChatGPT-like tools and automation to detect and defend against cyberattacks.


As cybersecurity breaches and incidents escalate, the cyber insurance ecosystem is undergoing rapid and transformational change.


Expert Insights

Related Content

Application Security

Cycode, a startup that provides solutions for protecting software source code, emerged from stealth mode on Tuesday with $4.6 million in seed funding.

CISO Strategy

SecurityWeek spoke with more than 300 cybersecurity experts to see what is bubbling beneath the surface, and examine how those evolving threats will present...

CISO Conversations

Joanna Burkey, CISO at HP, and Kevin Cross, CISO at Dell, discuss how the role of a CISO is different for a multinational corporation...

CISO Conversations

In this issue of CISO Conversations we talk to two CISOs about solving the CISO/CIO conflict by combining the roles under one person.

CISO Strategy

Security professionals understand the need for resilience in their company’s security posture, but often fail to build their own psychological resilience to stress.

Management & Strategy

SecurityWeek examines how a layoff-induced influx of experienced professionals into the job seeker market is affecting or might affect, the skills gap and recruitment...

Cybersecurity Funding

2022 Cybersecurity Year in Review: Top news headlines and trends that impacted the security ecosystem

Endpoint Security

Today, on January 10, 2023, Windows 7 Extended Security Updates (ESU) and Windows 8.1 have reached their end of support dates.