- Is the Cisco MARS mission going to abort?
- First iPhone worm spreads Rick Astley wallpaper
- 10 stunning 3D buildings made with Google SketchUp
- Open source software ready for big business
- Four reasons to buy (and one reason to avoid) the Droid
Cybersecurity will get a high-level champion at the U.S. Department of Homeland Security as part of a broad reorganization announced Wednesday by DHS Secretary Michael Chertoff.
Chertoff, in the results of a review of the DHS structure he started after taking over as secretary in February, elevated the cybersecurity chief at DHS several levels on the agency's organizational chart by creating a position of assistant secretary for cyber and telecommunications security. Several tech-oriented trade groups, including the Information Technology Association of America (ITAA) and the Cyber Security Industry Alliance, have repeatedly called for an assistant secretary to raise the profile of cybersecurity issues at DHS.
DHS did not release information about when it expected to have an assistant secretary in place.
An assistant secretary will have the authority to set policy and pull private industry into collaborations with government, ITAA President Harris Miller said recently. “The proof of the pudding is in the eating,” Miller added. “Have we made enough progress yet in those areas? The clear answer is no.”
IT groups have also suggested that a higher-level position with more authority would stop high turnover among government cybersecurity chiefs. The last DHS cybersecurity director, Amit Yoran, lasted about a year on the job.
Miller on Wednesday applauded Chertoff for creating the new position. Four bills introduced in Congress this year had also called on DHS to create an assistant secretary of cybersecurity.
DHS, when it was created in January 2003, didn't "give adequate focus" to cybersecurity, Miller said Wednesday. Miller called on the assistant secretary to establish lines of communication between government and private industry. In many cases, private industry sees cyberattacks sooner than government agencies do, he said, and there needs to be a "sophisticated, real-time, highly-trusted" information-sharing mechanism between government and private companies.
An assistant secretary will be able to tie together several cybersecurity efforts within government, added Jack Danahy, CEO of Ounce Labs, an IT security vendor. "Now there will be one voice telling the industry what government wants to do," said Danahy, who serves on a software security working group at DHS.
But some security experts have questioned the value of an assistant secretary, saying that without greater leadership from the top levels of the Bush administration, a new position may not improve cybersecurity much.
“If you don’t have a strategy, does it matter what you call them?” said James Lewis, director of the Technology and Public Policy Program at the Center for Strategic & International Studies, a Washington, D.C., think tank. “Can you think of an assistant secretary who’s an advocate in Washington?”
Lewis suggested "no" is the correct answer to both of his questions. He acknowledged, in a recent interview, that on a symbolic level, a higher-level position could raise the profile of cybersecurity issues, but in practice, “I don’t know if it makes much of a difference.”
Rss FeedRss Feed
The Leader in Network Knowledge
Comment