The Retail Industry Leaders Association- in conjunction with names like Gap, Lowe’s, Nike, Walgreens, J.C Penney, Target, and VF Corporation- recently launched the Retail Cyber Intelligence Sharing Center. It is a massive assembly of national and global brands all building a collective effort to stay ahead of the growing risks stemming from retail malware crime and data breaches. The formation of this group could not come soon enough, and we think it says much about the future of collective risk mitigation. The main goals of the R-CISC are real-time threat and intelligence sharing, education, and research collaboration. The R-CISC is thus divided into three respective components:
Retail-ISAC (Retail Information Sharing & Analysis Center)
This allows retailers to effectively identify threats occurring in real-time, then share actionable intelligence in order to mitigate risk. This happens in two ways: The first method is a relationship with embedded dedicated analysts and technicians at the National Cyber Forensics and Training Alliance (NCFTA), who coordinate with retailers and the NCFTA to quickly produce actionable intelligence informed by their own research into emerging threats. The second method involves similar relationships formed between the RILA and government agencies such as Homeland Security, the Secret Service, and the FBI.
Education & Training
The purpose of this component is to educate the retail community and provide training resources to enact best practices in cybersecurity. These resources will come from both key stakeholders and allied educational institutions.
This involves working in tandem with academia to identify possible future threats and share research on emerging technologies. It is likely that these relationships and research projects have already been formed and we will see the product of that effort in the coming months.
The official launch of the R-CISC was May 14th, 2014.