The former internet commander of the Federal Investigation Office: The Cyber Security Law, which preserves America quietly, is about to end

As a person who worked on both sides-the first private leadership partnership at the FBI and now facilitating industry cooperation-I saw what I have transformed our 2015 CISA 2015 our cybersecurity scene. The law provides decisive responsibility that encourages companies to share threat indicators with the government and each other, while providing protection to combat monopoly to cooperate between industry to industry. Without these guarantees, the exchange of strong information that made American networks safer simply stops.

The SMB crisis is awaiting its occurrence

The consequences of leaving CISA 2015 will significantly decrease on small and medium companies in America. Modern data from NetDiligence 2024 Internet claims It shows that Ransomware cost SMBS on average $ 432,000 per attack. These companies do not have the cash reserves for the time to stop the weather. At most, many can survive only from three to four weeks of operational disorder before facing permanent closure.

According to industry analysis, Small and medium enterprises represent 98 % of cyber insurance claims, while they represent $ 1.9 billion of total lossesWhich confirms their weakness in the threat scene today. The expiration of the CISA 2015 will weaken the early early warning system, which helped companies remain at the top of the emerging threats. Without the government’s ability to share strong intelligence on new attack methods, small and medium -sized companies become sitting for internet seams who specifically target organizations that cannot afford a loss of days or weeks.

Health care: where cyberspace becomes life and death

The risks are especially terrible in health care, as ransom attacks only threaten profits – they threaten lives. the Experts of the Faculty of Public Health at the University of Minnesota Estimating that ransom attacks were killed from 42 to 67 patients for medical care between 2016 and 2021. These numbers are a terrifying trend: intentions of threats intended intentionally because they know that health care systems will quickly push to avoid patients at risk.

If the information that is involved in its deterioration after the 2015 CISA sunset, then hospitals – and all other critical infrastructure – will lose decisive early warnings about ransom variables and other attack methods. When hospital systems are threatened, the quick information that shares things. The minutes are calculated in medical emergencies, and delays can be fatal.

Economic ripples effects

The economic impact extends beyond individual companies. SMBS forms The vast majority of (99 %) of companies In the United States, the employment of nearly half of the workforce of the private sector. According to the American Chamber of Commerce, they are Responsible for 43.5 % of our gross domestic productTherefore, their wide failure would create devastating ripples throughout the economy.

More importantly, the American technological leadership depends on the strong threat intelligence that allows CISA 2015. The cybersecurity companies lead our world specifically because they have access to comprehensive threat data that helps them to develop superior products and services.

Other countries have designed the exchange of cybersecurity information after our regime, with the realization that America’s approach gives us a competitive advantage. If we allow this framework to collapse, then we do not make individual companies more vulnerable to weakness – we undermine the basis of the American cybersecurity leadership, which other countries seek to emulate.

The path forward: a clean re -mandate now

There is an agreement from the two parties that the 2015 CISA should be re -authorized, with experts from all over the political spectrum that realizes its vital importance. The Minister of National Security, Christie Nayyim, called for the re -mandate, with a focus on the fact that partnerships between the public and private sectors have increased stronger due to the instructions for exchanging information created in Cisa 2015.

The eastern path is directly re -authorized while the Congress works through any technical improvements. The primary framework has proven more than a decade of work, as it facilitates billions of dollars from the losses granted and created a culture where the exchange of information is virtual instead of exception.

behind Politics: The inevitability of national security

In the era of political division, cybersecurity remains one of the few areas that the Americans can through the political spectrum find a common ground. We need to defend against the ongoing attacks coming from the likes Chinese actors using ransom programs During the weaknesses of SharePoint for Iranian groups that publish ransom programs as a political weapon for hundreds of criminal ransom groups operating at any specific time.

The solution is not more organization or bypassing the government. It is the cooperative approach that CISA 2015 reinforced. When I used to tell companies when I was at the FBI: We cannot help you if we do not hear from others, and we cannot help others if we do not hear from you. Make this principle of mutual aid and joint defense made America stronger, and we cannot abandon it now.

Congress should behave before September 30. If we allow the framework of the participation of our cybersecurity information to collapse, it will destroy small companies, subject to patients, and undermine America’s position as a global leader in cybersecurity. It’s time to work now, before the attacks that could have been prevented from the disasters that we failed to stop.

The opinions expressed in cutting comments Fortune.com are only the opinions of their authors and do not necessarily reflect opinions and beliefs luck.

Submit 2025 Fortune Global 500The final ranking of the largest companies in the world. Explore this year’s list.