Providing limited liability protection to private companies could be a sticking point for lawmakers working to pass cybersecurity legislation. Rep. John Tierney, D-Mass., ranking member of the national security, homeland defense and foreign operations questioned whether companies that adhere to federal  cybersecurity policies should not be held liable for the impact of a breach. Tierney also raised concerns that government agencies like the Department of Homeland Security are conducting risk assessments for companies that should be responsible for doing them. “I don’t know why we have to give you incentives,” said Tierney, in response to TechAmerica President Phil Bond’s remarks about providing…