Several factors are tipping the scales in favor of the bad guys. The top three are lack of (threat) information sharing, insufficient security automation and the absence of continuous security risk monitoring.
The proposed Cyber Intelligence Sharing and Protection Act (CISPA) is galvanizing government and industry over whether we need federally mandated security legislation and what it should look like.
