Cyber Statecraft Initiative

The Cyber Statecraft Initiative works at the nexus of geopolitics, technology, and security to craft strategies to help shape the conduct of statecraft and to better inform and secure users. This work extends through the competition of state and non-state actors, the security of the internet and computing systems, the safety of operational technology and physical systems, and the communities of cyberspace. The Initiative convenes a diverse network of passionate and knowledgeable contributors, bridging the gap among technical, policy, and user communities.

The Atlantic Council Technology Programs comprises five existing efforts—the Digital Forensic Research Lab (DFRLab), the GeoTech Center, the Cyber Statecraft Initiative, the Democracy + Tech Initiative, and the Capacity Building Initiative. These operations work together to address the geopolitical implications of technology and provide policymakers and global stakeholders necessary research, insights, and convenings to address challenges around global technology and ensure its responsible advancement.

learn more

Staff

Trey Herr

Senior Director

Cyber Statecraft Initiative

Cybersecurity Digital Policy

Staff

Safa Shahwan Edwards

Director, Capacity Building & Communities

Cyber Statecraft Initiative

Cybersecurity Spanish

Staff

Nancy Messieh

Deputy Director, Visual Communications

Cyber Statecraft Initiative

Staff

Jen Roberts

Associate Director

Cyber Statecraft Initiative

Cybersecurity French

Staff

Nitansha Bansal

Associate Director

Cyber Statecraft Initiative

Artificial Intelligence Cybersecurity

Staff

Sara Ann Brackett

Associate Director

Cyber Statecraft Initiative

Cybersecurity

Staff

Urmita Chowdhury

Assistant Director, Trainings and Competitions

Cyber Statecraft Initiative

Bengali Cybersecurity

Fellow

Winnona DeSombre Bernsen

Nonresident Fellow

Cyber Statecraft Initiative

China Chinese

Fellow

Danielle Jablanski

Nonresident Fellow

Cyber Statecraft Initiative

Cybersecurity Technology & Innovation

Fellow

Will Loomis

Nonresident Fellow

Cyber Statecraft Initiative

Cybersecurity

Fellow

John Speed Meyers

Nonresident Senior Fellow

Cyber Statecraft Initiative

Cybersecurity Technology & Innovation

Fellow

Wendy Nather

Nonresident Senior Fellow

Cyber Statecraft Initiative

Cybersecurity English

Fellow

Katie Nickels

Nonresident Senior Fellow

Cyber Statecraft Initiative Digital Forensic Research Lab

Cybersecurity Technology & Innovation

Fellow

Megan Samford

Nonresident Senior Fellow

Cyber Statecraft Initiative

Cybersecurity Technology & Innovation

Fellow

Chinmayi Sharma

Nonresident Fellow

Cyber Statecraft Initiative

Cybersecurity Digital Policy

Fellow

Justin Sherman

Nonresident Fellow

Cyber Statecraft Initiative

China Cybersecurity

Fellow

Margaret Smith

Nonresident Senior Fellow

Cyber Statecraft Initiative

Cybersecurity Security & Defense

Fellow

Josephine Wolff

Nonresident Senior Fellow

Cyber Statecraft Initiative

Cybersecurity Internet

Buying Down Risk

May 3, 2022

Buying down risk: Software provenance and composition

By Trey Herr, Robert Morgus, Stewart Scott, and Tianjiu Zuo

SBoM adoption is picking up pace, aiming to provide better insight into and contractual leverage for software components—increased investment, standardization, and coordination can help fully develop SBoM use.

Cybersecurity
Technology & Innovation

Buying Down Risk

May 3, 2022

Buying down risk: Cyber poverty line

By Trey Herr, Robert Morgus, Stewart Scott, and Tianjiu Zuo

Many enterprises face systemic challenges to their cybersecurity posture, from resource shortages to suboptimal risk attitudes, all of which weaken an ecosystem only as secure as its weakest links.

Cybersecurity
Technology & Innovation

Buying Down Risk

May 3, 2022

Buying down risk: Cyber liability

By Trey Herr, Robert Morgus, Stewart Scott, and Tianjiu Zuo

Despite software’s ubiquity and omnipresent vulnerability, conventions around liability for software producers are still informal and rarely enforced.

Cybersecurity
Technology & Innovation

Buying Down Risk

May 3, 2022

Buying down risk: Memory safety

By Trey Herr, Robert Morgus, Stewart Scott, and Tianjiu Zuo

Some coding languages, like C and C++, allow for a common, exceptionally dangerous bug called a memory safety error, comprising up to 70 percent of industry vulnerabilities.

Cybersecurity
Technology & Innovation

Buying Down Risk

May 3, 2022

Buying down risk in the cyber ecosystem: Arguments for the national cybersecurity strategy

By Trey Herr, Robert Morgus, Stewart Scott, and Tianjiu Zuo

The private sector has enormous influence over the cybersecurity ecosystem. Security investments stemming from enterprise and prioritizing a more resilient environment over reacting to emerging incidents can have massive impact at scale.

Cybersecurity
Technology & Innovation

Conflict, Risk, and Tech

Apr 29, 2022

The 5×5—Addressing the global market for offensive cyber capabilities

By Simon Handler

Five experts unpack the global market for offensive cyber capabilities and the implications associated with the proliferation of hacking tools.

Conflict
Cybersecurity

In-Depth Research & Reports

Apr 18, 2022

America the Unready: Viking Age lessons for ransomware

By Emma Schroeder

“America the Unready: Viking Age lessons for ransomware” explores the rising tide of ransomware and presents three lessons that the US Government can learn from the English Viking Age about combating persistent, distributed threats through strengthening collective resilience and defense.

Cybersecurity

Issue Brief

Mar 30, 2022

Preparing the next phase of US cyber strategy

By Jenny Jun

This paper considers tensions in the current US cyber strategy for the Defense Department and the broader cyber policy community in the Biden-Harris administration as they form the next phase of the strategy and determine how, when, and under what conditions Defend Forward can best serve as a means to the goal of achieving superiority in cyberspace.

Cybersecurity

The 5×5

Mar 21, 2022

The 5×5—Russia’s cyber statecraft

By Simon Handler

Five experts share their perspectives on what recent cyber developments related to Russia’s war in Ukraine indicate about Russian cyber behavior.

Belarus
Conflict

In-Depth Research & Reports

Mar 14, 2022

Targeting Ukraine through Washington: Russian election interference, Ukraine, and the 2024 US election 

By Gavin Wilde and Justin Sherman

US officials should recognize that Ukraine’s trajectory has always been a centerpiece of Russian interference in US elections. Doing so should guide US policymakers’ observations of what is happening now in Ukraine—and their preparations for what promises to be a climactic 2024 US election cycle.

Cybersecurity
Disinformation

Load More

The Atlantic Council’s Cyber Statecraft Initiative, part of the Atlantic Council Technology Programs, works at the nexus of geopolitics and cybersecurity to craft strategies to help shape the conduct of statecraft and to better inform and secure users of technology.

learn more

All original graphics created by the Cyber Statecraft Initiative (CSI) are available for re-use under the following conditions:

• Written permission must be granted by CSI.
• Graphics may be copied and distributed in any medium or format in unadapted form only, for noncommerical purposes, and only so long as attribution is given.¹Language based on Creative Commons CC BY-NC-ND 4.0
• The attribution must reference the Cyber Statecraft Initiative and include a link to the content.
• CSI cannot grant permission for the use of images or graphics licensed from third parties.