When the government shut down, the Cybersecurity Information Sharing Act of 2015 expired with it. That law provided liability protections for cyber threat information sharing and underpinned DHS’s Automated Indicator Sharing (AIS) program, which costs about $1M a month to run. Is it worth the cost? In this episode of Cyberside Chats, Sherri Davidoff and Matt Durrin dig into the value of public-private information sharing, the uncertain future of AIS, and how cybersecurity leaders should adapt as visibility gaps emerge. Along the way, they share a real-world story of how information sharing stopped a ransomware attack in its tracks — and what could happen if those pipelines dry up.

Key Takeaways:

• Strengthen threat intelligence pipelines: Don’t rely solely on AIS or your vendor. Ask providers how they source threat intel and diversify feeds.

• Review liability exposure: With CISA expired, safe harbors are gone — consult counsel before sharing.

• Plan for reduced visibility: Run tabletop exercises simulating loss of upstream intel.

• Get proactive about information exchange: Join ISACs, ISAOs, or local peer groups — and contribute, not just consume.

Resources:

• Reuters: Industry groups worry about cyber info-sharing as key U.S. law set to expire

• U.S. Chamber of Commerce: Letter to Congress on CISA 2015

• Baker McKenzie: CISA Liability Protections Terminate — What Legal & Infosec Need to Know

• Cyberside Chats: Executive Order Shockwave: The Future of Cybersecurity Unveiled

#CybersideChats #CISA #CISO #cybersecurity #infosec