Study and considerations on Information Sharing and Analysis Organizations

August 2015


The intent of the report is to move the conversation forward as an exploration of the potential models and nuts and bolts of ISAOs. Based on our analysis to date, ISAOs should contain the following characteristics if they are to maximize their utility:

  • A “trust-group” approach to membership.
  • The governance and related process standards for ISAOs must allow for flexibility.
  • ISAOs must provide timely and reliable cyber intelligence.
  • Information-sharing and analysis groups should adopt common vernacular and technical specifications.
  • ISAOs should be scalable without losing the value of these other characteristics.
  • Government should participate as a peer.

Contact us

David Burg
Global and US Co-leader, Cybersecurity and Privacy
Tel: +1 (703) 918 1067

Michael Compton
Principal, Cybersecurity Strategy & Operations
Tel: +1 (313) 394 3535

Peter Harries
Principal, Health Industries
Tel: +1 (213) 356 6760

John Hunt
PwC Public Sector LLP, Principal
Tel: +1 (703) 918 3767

Mark Lobel
Principal, Technology, Information, Communications & Entertainment
Tel: +1 (646) 471 5731

Gary Loveland
Principal, Consumer, Industrial Products & Services
Tel: +1 (949) 437 5380

Joe Nocera
Principal, Financial Services
Tel: +1 (312) 298 2745

Shawn Panson
Private Company Services, Leader
Tel: +1 (973) 236 5677

Grant Waterfall
Global Cybersecurity and Privacy Assurance Leader
Tel: +1 (646) 471 7779

Follow us