From Mary Brown | November 13th, 2009
Eric Chabrow at GovInfoSecurity.gov interviews Yvette Clarke who chairs the house subcommittee that is responsible for cybersecurity. She speaks to the status of the cybersecurity czar position as well as speaking to initiatives being proposed for national data breach and national identification laws.
Listen to the podcast or read the transcript and let us know what you think about the role of congress in creating national cybersecurity rules and practices.
Tags: congress, cybersecurity, podcast
Delicious // Digg This! // Technorati
Subscribe to comments via RSS 2.0 
From Dr. Steven Brown | October 13th, 2009
Politics is a way of life it seems, but sometimes we need to remove the politics and turf wars that do not nothing to help the security of the United States. Good and continued leadership is critical to run any organization, but with the Government’s cybersecurity program, leadership – it seems – keeps turning over. The latest person to leave states "bureaucratic obstacles and a lack of authority to fulfill her mission." (Read Another U.S. Cybersecurity Official Resigns).
There’s a big difference between authority and responsibility, the Government cannot give a department the responsibility to protect us, without the authority to do so.
Please feel free to comment.
Dr. Steven Brown
Tags: authority, bureaucratic, cybersecurity, cybersecurity program, politics, responsibility
Delicious // Digg This! // Technorati
Subscribe to comments via RSS 2.0
From Jimmy Arendt | September 14th, 2009
What am I talking about? I am talking about Bill S.773 that is before the 111th Congress 1st Session – AKA Cybersecurity Act of 2009. This bill was introduced to the Senate by Senator Rockefeller, et al. dated March 31, 2009. According to the “Cybersecurity Act of 2009 as found on OpenCongress.org’s Web site; this is “A bill to ensure the continued free flow of commerce within the United States and with its global trading partners through secure cyber communications, to provide for the continued development and exploitation of the Internet and intranet communications for such purposes, to provide for the development of a cadre of information technology specialists to improve and maintain effective Cybersecurity defenses against disruption, and for other purposes. “ (OpenCongress.org, 2009). READ ON
Tags: Bill S.773, cybersecurity, CyberSecurity Act of 2009
Delicious // Digg This! // Technorati
Subscribe to comments via RSS 2.0
From Mary Brown | April 28th, 2009
Senators, John D. Rockefeller IV (D-W.Va.), Olympia Snowe (R-Maine) and Bill Nelson (D-Fla.), introduced a bill titled the Cybersecurity Act of 2009. The bill covers a range of issues relating to cybersecurity, including the vulnerability of SCADA systems — particularly the power grid.
Interestingly, much of the bill’s coverage is focused on the idea that President Obama would be given the right to "shut off" the Internet, which is a bit of an exaggeration. The bill actually allows the President to declare an emergency and remove federal and critical infrastructure assets from the Internet, as a protective response to an attack. The bill’s controversy comes in the failure to clearly define critical infrastructure.
The portion of the bill that should interest information security professionals, but has received little attention, is the requirement that all information security professionals who would work with these undefined federal and critical infrastructure assets, would need certification by the federal government. The details of requirements needed to obtain or maintain this certification is yet to be determined.
I encourage you to read the bill and share your thoughts on the content.
Tags: cybersecurity, CyberSecurity Act of 2009, IAS Professionals, SCADA Systems
Delicious // Digg This! // Technorati
Subscribe to comments via RSS 2.0
