Expert: White House needs cybersecurity coordinator

The challenge of securing government networks from cyber attacks is so large that one person at the White House shouldn't be expected to act as the operational leader of cybersecurity efforts and should instead be a coordinator, an expert said today.

James Lewis, director of the Technology and Public Policy Program at the Center for Strategic and International Studies, said the cybersecurity chief should ensure that all federal agencies are moving in the same direction. Lewis made his remarks at the Digital Government Institute’s Cyber Security Conference and Expo in Washington.

“The problem is, if you have a czar that is going to try and run everything from the White House, it won't work; he or she will be overloaded,” he said. Instead, the cybersecurity coordinator should set policies and ensure that agencies carry out those policies.

Although officials are considering establishing such a role, some White House offices don't want to give up their share of control over cybersecurity, Lewis said. When President Barack Obama took office, 14 White House offices thought they were in charge of cybersecurity, he added.

For example, the Office of Science and Technology Policy has the legal authority to secure telecommunications networks. “It is very old authority, and they don’t want to give it up,” he said.

As new functions were identified, jobs were given to other offices. “Now we are going to have to clean up the mess that grew over time,” he added.

While the cleanup takes place, agencies can do a lot on their own to secure their networks and data, he said, adding that basic security measures can eliminate about 80 percent of existing vulnerabilities.

Using secure network configurations, installing software patches and consolidating connections to the Internet can vastly improve agencies’ security profile, Lewis said.

“Agencies need to grab that low-hanging fruit where they have the power to do so, or identify where they don’t have the power and then start saying, 'I need it,'” he said. “If you focus on that, you can make the target much harder for the people who are coming at you.”

About the Author

Doug Beizer is a staff writer for Federal Computer Week.

Featured

  • Contracting
    8 prototypes of the border walls as tweeted by CBP San Diego

    DHS contractors face protests – on the streets

    Tech companies are facing protests internally from workers and externally from activists about doing for government amid controversial policies like "zero tolerance" for illegal immigration.

  • Workforce
    By Mark Van Scyoc Royalty-free stock photo ID: 285175268

    At OPM, Weichert pushes direct hire, pay agent changes

    Margaret Weichert, now acting director of the Office of Personnel Management, is clearing agencies to make direct hires in IT, cyber and other tech fields and is changing pay for specialized occupations.

  • Cloud
    Shutterstock ID ID: 222190471 By wk1003mike

    IBM protests JEDI cloud deal

    As the deadline to submit bids on the Pentagon's $10 billion, 10-year warfighter cloud deal draws near, IBM announced a legal protest.

Stay Connected

FCW Update

Sign up for our newsletter.

I agree to this site's Privacy Policy.