Ten years mastering cybersecurity collaboration, gold lessons for success loop

June 30, 2024
1 min read

TLDR:

Key Points:

  • NRF’s IT Security Council was formed in response to high-profile cybersecurity breaches in the retail industry, beginning with the Target hack in 2013.
  • The Council has grown to over 250 members and has facilitated collaboration and information-sharing among cybersecurity leaders in the retail sector.

Lessons from a decade of cybersecurity collaboration

Since its inception in 2014, NRF’s IT Security Council has played a crucial role in bringing together cybersecurity leaders in the retail industry to collaborate and share best practices. The council was formed in response to a series of high-profile cybersecurity incidents, including the Target breach in 2013, which exposed the credit and debit card information of millions of customers.

The formation of the council allowed retail companies to exchange information on current cyber threats and industry best practices, with a focus on enhancing their capabilities to combat cyber threats. The group’s efforts have been supported by organizations like The Chertoff Group, which facilitated meetings with government and law enforcement officials, including the Department of Homeland Security.

Key founding members of the council, such as Cy Fenton of Proximus Consulting Group and Aaron De Runtz of Peet’s Coffee, emphasize the importance of building relationships within the retail community to strengthen cybersecurity measures. The council has grown to over 250 members, creating a valuable network for sharing information and cybersecurity plans.

Over the years, the council has provided a platform for retailers to participate in national cyber events like CyberStorm, organized by the Department of Homeland Security, to assess and strengthen cyber preparedness. The primary focus of the council has been on building relationships with law enforcement and government agencies to enhance incident response processes and cyber preparedness.

Overall, the IT Security Council has been instrumental in creating a collaborative environment for cybersecurity leaders in the retail industry. By sharing information and best practices, members have been able to enhance their cybersecurity capabilities and build key relationships within the retail community to combat cyber threats effectively.

Latest from Blog

EU push for unified incident report rules

TLDR: The Federation of European Risk Management Associations (FERMA) is urging the EU to harmonize cyber incident reporting requirements ahead of new legislation. Upcoming legislation such as the NIS2 Directive, DORA, and