Tech industry calls for urgent action to address a patchwork of cybersecurity regulations, warning of increased costs and national security risks.
 |
| Cybersecurity regulations are creating a complex and costly environment for businesses, according to ITI. The tech industry is urging Congress to streamline the process. |
Washington, DC, July 26, 2024:
The tech industry is calling for a significant overhaul of the United States’ patchwork of cybersecurity regulations, arguing that the current system is hindering innovation, increasing costs, and potentially compromising national security.
In testimony before the House Oversight and Accountability Subcommittee on Cybersecurity, Information Technology, and Government Innovation on July 25, John Miller, Senior Vice President of Policy and General Counsel at the Information Technology Industry Council (ITI), outlined the pressing need for harmonization. He emphasized that the current landscape of overlapping and often contradictory cyber regulations has created a complex and costly compliance burden for businesses.
“While we have studied the issue and offered recommendations, there has been no discernible harmonization – instead the problem is getting worse. It is time that we stop admiring this problem and commit to addressing it,” Miller stated during the hearing.
ITI is urging Congress to take several steps to address the issue. First, the organization calls for the Office of the National Cyber Director (ONCD) to take a more active role in coordinating cybersecurity efforts across the federal government. Second, ITI proposes the creation of a standardized framework for cyber regulations, including common definitions and risk management controls based on international standards.
Additionally, the tech industry is advocating for a centralized clearing process for new cyber regulatory proposals to prevent further fragmentation. Miller also emphasized the importance of developing a structured reciprocity process to reduce compliance burdens for businesses operating in multiple jurisdictions.
"It is imperative that we streamline the regulatory environment to foster innovation, protect consumers, and enhance our nation's cybersecurity posture," Miller concluded. The tech industry's call for action highlights the growing consensus that a coordinated and unified approach to cybersecurity is essential in today's complex threat landscape.