PayPal CISO: Laws must foster better cybersecurity information sharing

SAN FRANCISCO -- PayPal Inc. CISO Michael Barrett believes that to make a fundamental difference in the ongoing fight against cyberattackers, enterprises must learn how to improve their cybersecurity information-sharing efforts.

"Without question, information sharing is one of the key disciplines," Barrett said, "and we're not -- as the 'defense team' -- very good at that."

In this interview, conducted at the 2013 RSA Conference, Barrett discusses the problems facing information security intelligence-sharing initiatives, such as the National Council of Information Sharing and Analysis Centers (ISACs), as well as the crucial change that's needed to improve information sharing.

Barrett also discussed the evolution of the Payment Card Industry Data Security Standard and why it had a minimal effect on PayPal's information security program, as well as how PayPal is preparing to secure the growing mobile payment ecosystem.

View All Videos

Join the conversation

2 comments

Send me notifications when other members comment.

By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Please create a username to comment.

A better framework for Information Sharing should be based upon the "need to know" structure.

Meaning that, only the companies and/individuals that "need to know" should be informed via a secure channel.

Regards,
Alex Christopher Johnson
Cancel
Yes, but how do you decide who makes the 'need to know' list? What criteria do you use?
Cancel

-ADS BY GOOGLE

SearchSecurity

SearchCloudSecurity

SearchNetworking

SearchCIO

SearchConsumerization

SearchEnterpriseDesktop

ComputerWeekly

Close