Security culture needed in government

ADD THE AGRICULTURE DEPARTMENT TO THE GROWING LIST OF FEDERAL AGENCIES THAT HAVE FALLEN VICTIM TO HACKER ATTACKS. ONCE AGAIN IT APPEARS THAT NO SENSITIVE INFORMATION WAS COMPROMISED BUT THIS LATEST UNLAWFUL INTRUSION SERVED TO HIGHLIGHT THE SEEMING EASE WITH WHICH FEDERAL SYSTEMS CAN BE COMPROMISED AND UNDERSCORE THE NEED TO PUT TEETH INTO THE LAWS THAT PROTECT THESE SYSTEMS.

THE HOUSE SCIENCE COMMITTEE AND REP. CONSTANCE MORELLA (R-MD.) ARE SOON EXPECTED TO UNVEIL A MUCH-ANTICIPATED REFRESH TO THE COMPUTER SECURITY ACT. NOW 10 YEARS OLD THE LEGISLATION WHICH WAS DESIGNED TO ESTABLISH MINIMUM SECURITY STANDARDS FOR GUARDING FEDERAL SYSTEMS HAS BEEN OUTMODED BY TECHNOLOGICAL ADVANCES AS WELL AS AGENCIES' EVER-INCREASING DEPENDENCE ON INFORMATION SYSTEMS AND THE INTERNET.

WHILE WE APPLAUD CONGRESSIONAL EFFORTS TO STRENGTHEN THE LEGISLATION WE ALSO RECOGNIZE THAT IT IS NOT POSSIBLE TO LEGISLATE THE SECURITY CULTURE THAT IS NEEDED IN THE FEDERAL GOVERNMENT.

THE COMPUTER SECURITY ACT REQUIRED AGENCIES TO FORM SECURITY PLANS AND PROVIDE MANDATORY SECURITY TRAINING. OFFICE OF MANAGEMENT AND BUDGET CIRCULAR A-130 INCLUDES SECURITY GUIDELINES AND THE WHITE HOUSE HAS ISSUED SPECIFIC GUIDANCE ON WEB-SITE MAINTENANCE. DESPITE THESE EFFORTS THE BREAK-INS CONTINUE.

WE HAVE NOTED BEFORE AND CONTINUE TO BACK THE NEED FOR HIGH-LEVEL POLITICAL SUPPORT IN ADDITION TO NEW LAWS TO PUT SOME MUSCLE BEHIND EFFORTS TO GUARD FEDERAL SYSTEMS FROM ATTACK.

Featured

  • Telecommunications
    Stock photo ID: 658810513 By asharkyu

    GSA extends EIS deadline to 2023

    Agencies are getting up to three more years on existing telecom contracts before having to shift to the $50 billion Enterprise Infrastructure Solutions vehicle.

  • Workforce
    Shutterstock image ID: 569172169 By Zenzen

    OMB looks to retrain feds to fill cyber needs

    The federal government is taking steps to fill high-demand, skills-gap positions in tech by retraining employees already working within agencies without a cyber or IT background.

  • Acquisition
    GSA Headquarters (Photo by Rena Schild/Shutterstock)

    GSA to consolidate multiple award schedules

    The General Services Administration plans to consolidate dozens of its buying schedules across product areas including IT and services to reduce duplication.

Stay Connected

FCW Update

Sign up for our newsletter.

I agree to this site's Privacy Policy.