Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Information-Security-News
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

[ISN] Better organization, focus needed for cybersecurity

from [InfoSec News] Network Security [Permanent Link]
Subject: [ISN] Better organization, focus needed for cybersecurity
Date: Fri, 28 Apr 2006 05:37:36 -0500 (CDT) 
http://www.gcn.com/online/vol1_no1/40570-1.html

By William Jackson
GCN Staff
04/27/06 

The government needs to establish clear lines of authority and clarify
responsibility for an effective national information assurance policy,
former presidential adviser Paul Kurtz said Thursday.

"We have a growing body of law and regulation bearing on information
security," Kurtz said at the GovSec conference in Washington. But, "we
are not ready for a major disruption of the information infrastructure
today, and we have a long way to go to get there."

Kurtz, executive director of the Cyber Security Industry Alliance,
proposed a two-tiered framework for cybersecurity, in which critical
functionality could be identified for government attention, while less
pressing issues are passed to the private sector.

"The government doesn't have to solve everyone's problem here," Kurtz
said. Market forces and self-interest could be leveraged to handle
problems of public awareness, education and coordinating information.

Kurtz and Tom Leighton, chief scientist for the content delivery
network operator Akamai Technologies, described cyberspace as a tough
neighborhood that is getting tougher.

"We have to anticipate that terrorist groups will get involved in
disrupting cyberinfrastructure," along with nation states, Kurtz said.

We also must anticipate that attacks will succeed, and build
infrastructure to survive and respond to them, they said.

"We are under constant attack," Leighton said of Akamai's network. "At
any given time, we have a lot of servers taken down. And it doesn't
matter, because we direct traffic elsewhere."

Establishing an effective policy requires leadership. Kurtz called the
still-vacant position of assistant secretary for cybersecurity in the
Homeland Security Department critical to establishing a viable policy.

"Unfortunately, we're almost at a one-year anniversary, and we still
don't have an assistant secretary in place," he said.

Kurtz referred to the government's response to Hurricane Katrina, in
which primary responsibility for the efforts eventually devolved to
the Defense Department. Knowing who will be needed to respond to a
cyberdisaster is a critical part of establishing a policy.

"If we come under attack, it's going to be the geeks who restore the
networks," he said. Identifying and organizing the personnel and
resources needed for such a response should be done in advance.



_________________________________
InfoSec News v2.0 - Coming Soon! 
http://www.infosecnews.org
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
  • [ISN] Better organization, focus needed for cybersecurity, InfoSec News <=
Previous by Date:  [ISN] Next step in pirating: Faking a company, InfoSec News
Next by Date:  [ISN] Study Shows Downside of IT Certification, InfoSec News
Previous by Thread:  [ISN] Next step in pirating: Faking a company, InfoSec News
Next by Thread:  [ISN] Study Shows Downside of IT Certification, InfoSec News
Indexes:  [Date] [Thread] [Top] [All Lists]