Cyber Statecraft Initiative

The Cyber Statecraft Initiative works at the nexus of geopolitics, technology, and security to craft strategies to help shape the conduct of statecraft and to better inform and secure users. This work extends through the competition of state and non-state actors, the security of the internet and computing systems, the safety of operational technology and physical systems, and the communities of cyberspace. The Initiative convenes a diverse network of passionate and knowledgeable contributors, bridging the gap among technical, policy, and user communities.

Staff

Trey Herr

Senior Director

Cyber Statecraft Initiative

Cybersecurity Digital Policy

Staff

Safa Shahwan Edwards

Director, Capacity Building & Communities

Cyber Statecraft Initiative

Cybersecurity Spanish

Staff

Nikita Shah

Senior Resident Fellow

Cyber Statecraft Initiative

Cybersecurity Intelligence

Staff

Nancy Messieh

Deputy Director, Visual Communications

Cyber Statecraft Initiative

Staff

Stewart Scott

Deputy Director

Cyber Statecraft Initiative

Cybersecurity Disinformation

Staff

Morgan McMurray

Associate Director, Capacity Building

Cyber Statecraft Initiative

Cybersecurity Digital Policy

Staff

Jen Roberts

Associate Director

Cyber Statecraft Initiative

Cybersecurity French

Staff

Emma Schroeder

Associate Director

Cyber Statecraft Initiative

Conflict Cybersecurity

Staff

Nitansha Bansal

Assistant director

Cyber Statecraft Initiative

Artificial Intelligence Cybersecurity

Staff

Sara Ann Brackett

Assistant Director

Cyber Statecraft Initiative

Cybersecurity

Staff

Urmita Chowdhury

Assistant Director, Trainings and Competitions

Cyber Statecraft Initiative

Bengali Cybersecurity

Fellow

Winnona DeSombre Bernsen

Nonresident Fellow

Cyber Statecraft Initiative

China Chinese

Fellow

Danielle Jablanski

Nonresident Fellow

Cyber Statecraft Initiative

Cybersecurity Technology & Innovation

Fellow

Will Loomis

Nonresident Fellow

Cyber Statecraft Initiative

Cybersecurity

Fellow

John Speed Meyers

Nonresident Senior Fellow

Cyber Statecraft Initiative

Cybersecurity Technology & Innovation

Fellow

Wendy Nather

Nonresident Senior Fellow

Cyber Statecraft Initiative

Cybersecurity English

Fellow

Katie Nickels

Nonresident Senior Fellow

Cyber Statecraft Initiative Digital Forensic Research Lab

Cybersecurity Technology & Innovation

Fellow

Megan Samford

Nonresident Senior Fellow

Cyber Statecraft Initiative

Cybersecurity Technology & Innovation

Fellow

Chinmayi Sharma

Nonresident Fellow

Cyber Statecraft Initiative

Cybersecurity Digital Policy

Fellow

Justin Sherman

Nonresident Fellow

Cyber Statecraft Initiative

China Cybersecurity

Fellow

Margaret Smith

Nonresident Senior Fellow

Cyber Statecraft Initiative

Cybersecurity Security & Defense

Fellow

Josephine Wolff

Nonresident Senior Fellow

Cyber Statecraft Initiative

Cybersecurity Internet

In the News

Sep 6, 2023

Wired picked up a Global China Hub and Cyber Statecraft Initiative report on how China demands tech firms to reveal hackable flaws in their products. The initial report was written by Global China Hub Nonresident fellow Dakota Cary and Kristin Del Rosso

Andy Greenberg at Wired wrote about the recent Atlantic Council report which “investigates the fallout of a Chinese law passed in 2021, designed to reform how companies and security researchers operating in China handle the discovery of security vulnerabilities in tech products.” The original article report was written by Global China Hub nonresident fellow Dakota […]

China Economic Sanctions

Report

Sep 6, 2023

Sleight of hand: How China weaponizes software vulnerabilities

By Dakota Cary and Kristin Del Rosso

China’s new vulnerability management system mandates reporting to MIIT within 48 hours, restricting pre-patch publication and POC code. This centralized approach contrasts with the US voluntary system, potentially aiding Chinese intelligence. MIIT shares data with the MSS, affecting voluntary databases as well. MSS also fund firms to provide vulnerabilities for their offensive potential.

China Cybersecurity

The 5×5

Aug 21, 2023

The 5×5—Cloud risks and critical infrastructure

By Simon Handler

Experts share their perspectives on the challenges facing cloud infrastructure and how policy can encourage better security and risk governance across this critical sector.

Cybersecurity Infrastructure Protection

The 5×5

Aug 3, 2023

The 5×5—Cyber conflict in international relations: A policymaker’s perspective

By Simon Handler

Current and former policymakers address cyber conflict’s fundamental place in international relations, their recommended readings, and ideas for how policymakers and scholars can more effectively engage one another.

Cybersecurity National Security

Cybersecurity, Strategy, and Policy

Jul 19, 2023

Why do SBOM haters hate? Or why trade associations say the darndest things

By John Speed Meyers, Sara Ann Brackett, Trey Herr

SBOMs are an important step forward for software supply chain security, so despite pushback and opposition, industry and government should take a page out of Taylor Swift’s book and just keep cruisin’, don’t let SBOM haters get in the way. 

Cybersecurity

Markup

Jul 18, 2023

The National Cybersecurity Strategy Implementation Plan: A CSI Markup

By Trey Herr, Stewart Scott, Maia Hamin, Will Loomis, Sara Ann Brackett, Jennifer Linn

On July 13, the White House released the Implementation Plan for the 2023 US National Cybersecurity Strategy. Read along with CSI staff, fellows, and experts for commentary and what the NCSIP means for the Strategy.

Cybersecurity United States and Canada

Report

Jul 10, 2023

Critical infrastructure and the cloud: Policy for emerging risk

By Tianjiu Zuo, Justin Sherman, Maia Hamin, and Stewart Scott

Critical infrastructure increasingly depends upon cloud computing. Policy must adapt its approach to risk management accordingly.

Cybersecurity Resilience

Conflict, Risk, and Tech

Jun 28, 2023

Shaping the global spyware market: Opportunities for transatlantic cooperation

By Jen Roberts and Emmeline Nettles

The United States and its allies can do more to improve their position on spyware. Further policy action should, through greater collaboration with marketplace operators and allies and partners, work on furthering the development of norms and common understanding of what spyware can and cannot be used for.

Cybersecurity European Union

The 5×5

Jun 20, 2023

The 5×5—Cyber conflict in international relations: A scholar’s perspective

By Simon Handler

Leading scholars provide insights on cyber conflict’s role in international relations, how the topic can best be taught to students, and how scholars and policymakers can better incorporate each other’s perspectives.

Cybersecurity National Security

Issue Brief

Jun 14, 2023

Who’s afraid of the SEC

By Maia Hamin

The SEC wants to require fast, public disclosure of cybersecurity incidents. These rules could benefit investors—and the cyber ecosystem.

Cybersecurity Internet

Load More

The Atlantic Council’s Cyber Statecraft Initiative, part of the Atlantic Council Technology Programs, works at the nexus of geopolitics and cybersecurity to craft strategies to help shape the conduct of statecraft and to better inform and secure users of technology.

learn more

All original graphics created by the Cyber Statecraft Initiative (CSI) are available for re-use under the following conditions:

• Written permission must be granted by CSI.
• Graphics may be copied and distributed in any medium or format in unadapted form only, for noncommerical purposes, and only so long as attribution is given.¹Language based on Creative Commons CC BY-NC-ND 4.0
• The attribution must reference the Cyber Statecraft Initiative and include a link to the content.
• CSI cannot grant permission for the use of images or graphics licensed from third parties.