CISA, Korea sign MoU to exchange cyber threat information, cybersecurity best practices

The Director of the U.S. Cybersecurity and Infrastructure Security Agency (CISA), Jen Easterly, and the Deputy Director of the Republic of Korea’s National Intelligence Service (NIS), Baek Jong-wook, have signed a Memorandum of Understanding (MoU). The deal highlights the areas of collaboration between the two countries, as outlined in the bilateral Cyber Framework signed by President Joe Biden and Republic of Korea President Yoon Suk Yeol in April.

Under the MoU signed, the U.S. and Korea will consult regularly on technical capabilities and mechanisms for cybersecurity threat response, enhancing communications between respective Computer Emergency Response Teams (CERTs). They will also collaborate on critical infrastructure supply chain resilience; share best practices across cyber and infrastructure domains through joint exercises, expert-level exchanges, and training; and share best practices on policies governing new technologies such as AI (artificial intelligence). 

The framework affirms cooperation with Korea in key CISA mission areas, including sharing technical and operational cyber threat information and best practices in cyber crisis management. 

“I am pleased that CISA is partnering with the Republic of Korea National Intelligence Service through this Memorandum of Understanding to strengthen our collaboration on defending against cyber threats,” Jen Easterly, CISA director, said in a Thursday media statement. “International cooperation with key partners and allies is vital to building resilience in our shared cyber ecosystem. Today’s agreement represents a great step forward in our work together.”  

The CISA-NIS MoU builds on already strong collaboration with the Republic of Korea, a key treaty ally and cybersecurity leader in the Indo-Pacific region. CISA joins the Department of Homeland Security (DHS), Department of Defense (DoD), and other U.S. government agencies that have entered into cyber collaboration agreements with Korean counterparts.

In June, senior leaders from both countries determined that CISA and NIS would co-lead a Framework Action Group on critical infrastructure. The Action Group will also bring together Korea’s Ministry of Science and ICT and other USG departments and agencies.  

Rising cybersecurity threats and attacks have pushed for a more globalized approach to fighting such adversaries. Earlier this month, fifty member countries from the International Counter Ransomware Initiative (CRI), including the Republic of Korea, convened for their third meeting in Washington this week. The primary focus of the CRI members at this year’s gathering was to enhance capabilities in disrupting attackers and their infrastructure, fostering improved cybersecurity through information sharing, and taking action against ransomware actors.

Anna Ribeiro

Industrial Cyber News Editor. Anna Ribeiro is a freelance journalist with over 14 years of experience in the areas of security, data storage, virtualization and IoT.