FAA data breach irks readers
We have heard from numerous readers who have nothing good to say about the Federal Aviation Administration and the data breach that compromised information on more than 45,000 employees. You can read FCW's story, along with all the comments, here.
But here is a sampling of what we heard:
- The FAA has always protected itself first vs it's employees. I quickly enrolled in LifeLock upon hearing the news... I suggest "ALL" current FAA employees consider the same. You CANNOT depend on FAA managment to do the "right" thing.
- This shows the fallacy of the current C&A environment. Agencies are so afraid of missing a FISMA C&A report deadline that they use scarce resources just to meet that mark instead of actually securing systems.
- As a recently retired FAA employee, whose information was likely a part of this, I am concerned. But am also unable to find ANY information on the FAA public web site, and the employee site is only available to current employees. If they have known about this for over a week, why the delay in informing people? The promised letter will likely take weeks...
Among other comments, we also received one editorial tweak:
- So what is a “very monitoring-centric approach to understand what’s happening with your data"? What are the tools?
Posted by John Stein Monroe on Feb 11, 2009 at 12:14 PM