TheConversation

Blog archive

How to legislate cybersecurity right

Jay Rockefeller

Sen. Jay Rockefeller, one of the Senate's advocates of cybersecurity legislation.

Responding to an article on the Senate's renewed cybersecurity effort, reader Paul Misner wrote: [The] Senate walks a fine line here. If the bill is too weak, it will have no value as all. Too rigid, and it will result in agencies and companies being forced to implement out of date processes, hardware, software, and procedures that will increasingly become less valuable. What is needed is a strong, but balanced framework which is easy to understand, and dynamic to meet a dynamic set of adversaries. I think this type of legislation should be enforced with a carrot, rather than a stick, but providing protection from penalties for entities that follow it's guidelines, rather than punishment for those agencies who fail to make an effort to enforce.

Amber Corrin responds: That seems to be the consensus. A number of sources have warned against FISMA-like, "check-the-box" regulations that do not allow for the agility necessary to keep up with constantly evolving cyber threats. This, as well as the carrot-over-stick argument, was a top concern for Fortune 500 companies who responded to a cybersecurity questionnaire from Sen. Jay Rockefeller, as FCW reported earlier this month.

Posted by Amber Corrin on Feb 06, 2013 at 12:10 PM


Rising Stars

Meet 21 early-career leaders who are doing great things in federal IT.

Featured

  • SEC Chairman Jay Clayton

    SEC owns up to 2016 breach

    A key database of financial information was breached in 2016, possibly in support of insider trading, said the Securities and Exchange Commission.

  • Image from Shutterstock.com

    DOD looks to get aggressive about cloud adoption

    Defense leaders and Congress are looking to encourage more aggressive cloud policies and prod reluctant agencies to embrace experimentation and risk-taking.

  • Shutterstock / Pictofigo

    The next big thing in IT procurement

    Steve Kelman talks to the agencies that have embraced tech demos in their acquisition efforts -- and urges others in government to give it a try.

  • broken lock

    DHS bans Kaspersky from federal systems

    The Department of Homeland Security banned the Russian cybersecurity company Kaspersky Lab’s products from federal agencies in a new binding operational directive.

  • man planning layoffs

    USDA looks to cut CIOs as part of reorg

    The Department of Agriculture is looking to cut down on the number of agency CIOs in the name of efficiency and better communication across mission areas.

  • What's next for agency cyber efforts?

    Ninety days after the Trump administration's executive order, FCW sat down with agency cyber leaders to discuss what’s changing.

Reader comments

Please post your comments here. Comments are moderated, so they may not appear immediately after submitting. We will not post comments that we consider abusive or off-topic.

Please type the letters/numbers you see above

More from 1105 Public Sector Media Group