On November 16, 2020, the Homeland Security Advisory Council (HSAC) published two reports that were submitted to the Acting Secretary of the Department of Homeland Security (DHS) on Department policy. These reports are noteworthy for several reasons. First, they take a broad and skeptical view of information and communication technology (ICT) risk and propose mitigations that could affect private supply chains and critical infrastructure sectors. Second, they promote a more directive government approach to procurement, merger reviews, and supply chain risk assessments. Third, they embrace recommendations from the Cyberspace Solarium Commission for private sector regulation. Fourth, they call for “industrial policy” and expanded roles for DHS in everything from export controls to economic regulation.
