The National Retail Federation is moving forward with the creation of a program that will provide retailers access to information on cybersecurity threats identified by retailers, government and law enforcement agencies and partners in the financial services sector. The program, developed in consultation with the Financial Services Information Sharing and Analysis Center, will launch with the establishment of an information-sharing platform for retail-industry information security specialists, and plans call for a retail ISAC to be established in June.
“We believe a heightened and well coordinated information-sharing platform, such as a retail ISAC, is a vital component for helping retailers in their fight against cyber attacks,” said NRF president and CEO Matthew Shay. “Establishing a new program takes time, but time is not our friend when it comes to stopping these sophisticated and unpredictable criminals. The willingness of the FS-ISAC to work with retailers provides our industry with a new and important tool as we explore all of the options available for merchants to protect their customers and their businesses.”
The NRF's efforts to curb cybersecurity threats include:
- Members of the IT Security Council—a subcommittee of the NRF CIO Council, which is composed of CIOs and other technology experts from more than 120 leading retailers and industry partners—meeting regularly to discuss existing cybersecurity programs as well as explore new opportunities for retailers
- NRF representatives recently holding in-depth discussions with the United States Secret Service and other law enforcement agencies for insight and guidance on how to improve communication, identify available resources and collaborate more effectively to help retailers combat criminal cyber activity
- The NRF retaining the services of Kim Peretti, a partner in the law offices of Alston and Bird, where she is part of the firm’s White Collar Crime Group and co-chairs the Security Incident Management and Response Team. She is also a former director of PricewaterhouseCoopers’ cyber forensic investigation unit and a former senior litigator for the Department of Justice's Computer Crime and Intellectual Property Section.
- The NRF working closely with the cybersecurity professionals from The Chertoff Group, providing NRF members with the highest level of insight and guidance in risk management and cybersecurity expertise