Congress is continuing debate on changes to cybersecurity law(s). This would be the first major update since 2002 (the Federal Information Security Management Act of 2002, aka FISMA). We’re in the process of reviewing some of the drafts and looking at the testimony provided by several SMEs to the Senate on 2012-02-16. The big focus seems to be on how to secure commercial (i.e., private company) assets that are so critical as to be national security concerns. This would likely impact organizations like utility companies, Internet providers, certain manufacturers, etc. This public-private partnership concept has been floating around for a long time but it looks like there is some political will to move it forward this year.