Security culture needed in government

ADD THE AGRICULTURE DEPARTMENT TO THE GROWING LIST OF FEDERAL AGENCIES THAT HAVE FALLEN VICTIM TO HACKER ATTACKS. ONCE AGAIN IT APPEARS THAT NO SENSITIVE INFORMATION WAS COMPROMISED BUT THIS LATEST UNLAWFUL INTRUSION SERVED TO HIGHLIGHT THE SEEMING EASE WITH WHICH FEDERAL SYSTEMS CAN BE COMPROMISED AND UNDERSCORE THE NEED TO PUT TEETH INTO THE LAWS THAT PROTECT THESE SYSTEMS.

THE HOUSE SCIENCE COMMITTEE AND REP. CONSTANCE MORELLA (R-MD.) ARE SOON EXPECTED TO UNVEIL A MUCH-ANTICIPATED REFRESH TO THE COMPUTER SECURITY ACT. NOW 10 YEARS OLD THE LEGISLATION WHICH WAS DESIGNED TO ESTABLISH MINIMUM SECURITY STANDARDS FOR GUARDING FEDERAL SYSTEMS HAS BEEN OUTMODED BY TECHNOLOGICAL ADVANCES AS WELL AS AGENCIES' EVER-INCREASING DEPENDENCE ON INFORMATION SYSTEMS AND THE INTERNET.

WHILE WE APPLAUD CONGRESSIONAL EFFORTS TO STRENGTHEN THE LEGISLATION WE ALSO RECOGNIZE THAT IT IS NOT POSSIBLE TO LEGISLATE THE SECURITY CULTURE THAT IS NEEDED IN THE FEDERAL GOVERNMENT.

THE COMPUTER SECURITY ACT REQUIRED AGENCIES TO FORM SECURITY PLANS AND PROVIDE MANDATORY SECURITY TRAINING. OFFICE OF MANAGEMENT AND BUDGET CIRCULAR A-130 INCLUDES SECURITY GUIDELINES AND THE WHITE HOUSE HAS ISSUED SPECIFIC GUIDANCE ON WEB-SITE MAINTENANCE. DESPITE THESE EFFORTS THE BREAK-INS CONTINUE.

WE HAVE NOTED BEFORE AND CONTINUE TO BACK THE NEED FOR HIGH-LEVEL POLITICAL SUPPORT IN ADDITION TO NEW LAWS TO PUT SOME MUSCLE BEHIND EFFORTS TO GUARD FEDERAL SYSTEMS FROM ATTACK.

Featured

  • IT Modernization
    Eisenhower Executive Office Building (Image: Wikimedia Commons)

    OMB's user guide to the MGT Act

    The Office of Management and Budget is working on a rules-of-the-road document to cover how agencies can seek and use funds under the MGT Act.

  • global network (Pushish Images/Shutterstock.com)

    As others see us -- a few surprises

    A recent dinner with civil servants from Asia delivered some interesting insights, Steve Kelman writes.

  • FCW Perspectives
    cloud (Singkham/Shutterstock.com)

    A smarter approach to cloud

    Advances in cloud technology are shifting the focus toward choosing the right tool for the job and crafting solutions that truly modernize systems.

Stay Connected

FCW Update

Sign up for our newsletter.

I agree to this site's Privacy Policy.