Remember how it used to feel when your school's year-end report cards went out and you wondered how you'd do, especially in respect to your peers? Well, in Congress yesterday, the House Government Reform Committee handed out the annual cyber-security grades to 24 large federal agencies, based on reviews carried out by the Office of Budget and Management (OMB). The average cyber-security score? D+
That D+ was the average grade for the year 2004 as well when the House Government reform Committee last handed out cyber-security grades, a ritual that has gone on since 2001, when the average grade was F.
If this were school, the federal government would have to repeat a year. Every year.
So which agencies are weighing down the national cybersecurity average with an "F"? They are: The Dept. of Agriculture, the Department of Defense, Dept. of Energy, Health and Human Services, Dept. of Homeland Security, Dept. of the Interior, the State Department and the Dept. of Veterans Affairs.
There were a few high achievers, though too, agencies that got between an A+ to B-. These few agencies are: Agency for International Development, Environmental Protection Agency, General Services Administration, Dept. of Labor, National Science Foundation, Officer of Personnel Management and the Social Security Administration.
It's particulary depressing that agencies with direct responsibility for national security--the Defense Dept. and Dept. of Homeland Security, and State--can't pass cybersecurity examinations based on the rules of the Federal Information Security Mnagament Act.
Post a comment
|
Does Verizon's Voyager stack up to the iPhone? |
5 IT skills that won't boost your salary 
[1,407]
Women 4 times more likely than men to cough up personal info [589]
Japan's 10 funniest tech-related commercials [Videos] [407]
Throwing away a promo CD is "unauthorized distribution"? [1,265]
Adults too quick to dismiss educational video games [682]
Attack of the iPhone clones [Slideshow] [578]
10 things IT needs to know about AJAX [1,258]
This Year's 25 Geekiest 25th Anniversaries [Slideshow] [409]
Learn how to exploit your current security investment to control the information that flows into, through and out of your network.
Evaluating endpoint security products is a time-consuming and daunting task. Learn the six critical questions you need to ask prospective vendors to get the right endpoint solution.
Employees installing unauthorized applications is a growing threat to business security and productivity. Cost-effectively reduce this threat by integrating control into your malware protection.
