Summary of S. 754: Cybersecurity Information Sharing Act (CISA) Passed by the Senate October 27, 2015

Overall Goals

  • CISA establishes a legal framework that would encourage private industry to voluntarily share cybersecurity information (cyber threat indicators and defensive measures) with the federal government to help bolster efforts to guard against cyber attacks.
  • CISA establishes the Department of Homeland Security (DHS) as the primary interface with the private sector and the main portal for the sharing of cyber information from industry to the federal government.
  • CISA seeks to balance the protection of personally identifiable information, which could put people at risk for unlawfully having their private information shared, with liability protections for entities who engage in the voluntary sharing of information with the federal government by requiring the removal of any personal information before it is shared.