Government IT - eWeek


Is the Smart Grid a Dumb Idea?
Surgical Adhesive Offers Smarter Way to Mend Bones
Get Smarter Technology on Your Mobile!
  Government IT


Federal Security Takes Home D+ Report Card



 By: Caron Carlson
2005-02-24
Article Rating:starstarstarstarstar / 0


There are 0 user comments on this Government IT story.


Rate This Article:
Poor Best
U.S. lawmakers are contemplating new enforcement tools and financial incentives to spur better security practices after a report card on federal information security showed government CIOs managed a barely passing D+ average.

U.S. lawmakers are contemplating new enforcement tools and financial incentives to spur better security practices after a report card on federal information security showed government CIOs managed a barely passing D+ average.

The rating for 2004, released earlier this month, is a half-grade up from the previous years D. The notoriously low performance has called attention to substandard security measures taken to protect the governments networks and prompted lawmakers to demand improvements in Washington before making further demands on the private sector.

Seven agencies, including the departments of Energy, Commerce, Agriculture and Homeland Security, flunked the annual evaluation outright. The performance at the Department of Commerce was particularly disappointing, as the agency received the relatively commendable mark of C- one year ago. Of the 24 agencies evaluated, eight received lower grades this year than last.

Resource Library:

"I think they take their eye off the ball," said Rep. Tom Davis, R-Va., chairman of the House Committee on Government Reform. "This demands constant attention. Every day they have to be thinking about this."

The Department of Transportation and the Agency for International Development were the star pupils this year, earning an A- and A+, respectively. Altogether, six agencies improved their scores during the grading period. The Department of Justice and the Department of the Interior won special commendation for their B- and C+ ratings, both great improvements over last years failing grades.

Click here to read more about the 2003 report.

Improved security came about largely from devoting greater resources to the certification and accred- itation of IT systems and from establishing enforceable security policies, according to a survey conducted by Telos Corp., based in Ashburn, Va. The State Department, which earned a D+, up from last years F, has now certified all its IT systems, according to Bruce Morrison, department CIO.

"We will try harder next year," Morrison said.

The agencies budgets are not affected by the scores they receive for information security performance, leaving some to question the value of the assessment process. Davis said that the Federal Information Security Management Act, which requires the annual evaluation, may need to be amended to include enforcement provisions beyond the reporting requirements. In addition, a financial incentive for information security executives may be developed.

"I think over the long term there is going to be a link with funding," Davis said, adding that it would likely be an indirect link through bonuses.

The Federal CIO Council and Davis invited the private sector to join them in a new public/private information-sharing partnership. The forum, called the Chief Information Security Officer Exchange, or CISO, would allow companies to sponsor meetings between government and commercial information security officers. So far, no private sector companies have committed to the partnership, according to Davis staff.

Check out eWEEK.coms for the latest news, views and analysis of technologys impact on government and politics.



  Reader Comments: Federal Security Takes Home D+ Report Card
>>> Be the FIRST to comment on this article!
 

 
 
>>> More Government IT Articles          >>> More By Caron Carlson
 


x}ks㶲*Q3CO#Mɶ<43R$$1Hd'['7n7%?6ЍFh|GggD]ݴ1p͙M55|zg`HRsgޅ-34 @oRQP ĠxnwݶN`P'~ > \?g3U;Y|R(áh] ]( ѼeMGQR`J Cw*Nul9 Q)+X^DP~FDM:ǎ-4rwN̚0/PcwҴdh-vu=yͨ /B1r!f-{4ɿTݱ[ L=iLVG;%0ýtf?Dk> NZ] ZSˆ辥{$)5< \g4QL1H6}~8IZ QK68VR`?Ķh¹p\.* }= :ԍ۱|$ .j.9a&ԃ C(p}=\'BL|:j/Eӝfؖq[th(V*Z]QKru_):+{1كS who>;W)EsvU !GA mkh[I#ZIۇ_w{>~nr  3 N7Rߘ`ZLTQRpf Rc@G,{/B oVqW-hZIAvina[E4b™EU}dN"?[ڗu&u}Y6f0ZiCA+WtW?#;ˠjqszr|qӹ]Q4{3Bɝ`g@ɋ BD4?CzC0!pl/\~_L.΃QwWڲ9Q[ kK\M흙ǘ\z댛Vu.~hzmxD18,]evb`\77Zu?1Ra^TU G'&-d`q86acJݤ#}fE= tSOC|>56㤞F!|Бdmxq=Z.3+ԍEXn`Nth Qx٭lE%_¤< ) FA=H:}mP`~5$ǎ@ Ls'08 ɝ5E0ݻCi`y1&=զA{ Tgg ,zC k 6G~[>l03QP|'sZ( 7^`2)%%E29 EEKy3@ $h-4`z.́mbo$HXVphT6ݞH:w@T*esRأXB YX/E_R23#CdɬaX91{MfT`"[ᛥLKak`FX,CMۯ!M{ڣeX#>hf&i &蝐`3Ґ( s?{\ g!7!q"%st0x>fXfZ1kpBa"@s2iB7 ƉeLH|B3} H8M{lz:{mQH>08-vys3tNn~|ZFhIO3Ь||=厬m[4@>T*|zS.z:ԍ$r%5kb$T`CL Aװ DؚZWS{<`m1Jx>hx# d\6XbO`#Vškϧ;°w^^v˖?~F|2^ۄC=1͉V*a0Y6؋T,{|ݛtZA_` V&I?րH{A2,exY.5mI\v 'Yw$ Eiy Y$p}r)#©5j!| jjx0A,#ןũ¨0vQԺ;12­q͝a&1 DR)Ö1Swhi'T'/咢TSАah"pHEAxZkhp\@U.)L-9Hz  [ hg [QznSCz+n `RI?I BL!2B3ݧ==1g匬~`" dRPZUU+òZp~W`q,(xO?b5xh/Op{/Ne6Z/Pz;ܦ[pK9sOSp c.# ,c?` $̮fG`ã R)P^Cs2](:h3 siﭢz8_n?9!/ɘVIaf28ʇF18= [ ٔ|{.J 5:߼=Fh=Эt;Gq;Y qLϡRB7PU ōfπiNdž m}  m_ۯ `EOwDF3۝>S"1$*L3)㦧RQu VI^Aұg.@C׳@g.7^u, ς2 Ba u( =6Q;o]!c̞Òf&s,.ҞIG:-efF*ݔ[YsVR$gI#cg?fmE:Jb{I2N=ym5umf`<#ɟ?9pw@7| o6eM+v@lkZpw|L2M: G ɲ\' ׫UVگ]q.g$ ,$,zǣx]!6ps^ar0qq8(-E<92=qhZavOT+f4A<8&ov/>B05@ E D@D;n?% ?S-l8-F:w~ݕDwo;tNg}e_:m]tο&=~f?Н :uaa=$g·~`WߗH LЇI_rH`uԹh}h0.[ltJj2m&A)pdQL?jnW۫ItaFۧ(F@iDW~Bh]\/~wϻ(!9\txx\MC;R%9!hUHv::f3hmƛ&%ckC2 xidLik-,ҽ>i_sfiZ ^k=W17U8\F`v~YF_aݪ,d"0&&*tzȃ}E9ǀzB*q]G:Ky6P^S(+RJ"4FYO |Ng <@9FhDu~nGnEr}##(3rcvd\:Gw*b,_=hrrӅ[ `{v$smCٱDݘ~zNhs)o. cgm:;@FP$w"BkQD=%7,`*h 5nWKoNuA?K.}:﷯IK 09jJs dthCk7yEO>4wX]{gE V7N{m,da}?H+Fyc(!OKSiϑ٘NBERTUukln(rYpJeOV ;ld+NE$,nP2vAK JG3`ȾqK7bcoJP}|]& {~W]ߣPIݣw뻻~=mҊ(r]ZD܎qw5U {II5)t}<-J`RToy^f} m$.EB"fcME[o<ק{cef7X#Ÿ6@!{zmGX ?*4lo azS`{ƅ=RH3x <v4.߮ݘ8)<A~A< vL4);+xΛF}ia3⫆†u õQ`Vaj8-$\}5 ߈;6bE#Ɠtǟ-c򽱢|3̕ u\ kM_U_s w2 |cMGKLBI|pIM{fr+ 7EAn˸!E%ÖdN._2Zl뎟2d] ehq{Gm[/)ʾ+̻q1:,dC eiM=<-tP^"8FkDRWKi`S͂hԌnS@b;^\f9BRm 0Hp'O.`{f ݍ .#NBA zd\W& K6%UkA:,|s*U*z1@' :'X FIWz/JBϢJ9o&k^5SKXtD'iH6qRo˃) LZs8WV @QB$ W/I*S+lw;>SoƯ4WB98|[ 0NE)Z98$dH9g ~C{Ҫn>MG$J9>Iz4Qp{&њ/jC>xEO(,GꄁĎt~4x@-{x,Ďu3x 7?9g?8dK~pnnU}OS ~~~~^Ymsuye ;G5L c@`MI駅 g9AS=XT/DuU /`چSЍ0_Ӻ]́YmI7h]w^y25}U'~j?q_ mnV*~@6:}8! C}߅q ;qPB^apJ!YbO$F%-_x} %xMťla8PFIv-Ct?fn(+;|z$KCQ0A_הbԊ\4 yT/p~@* &gTx>NJhcc7Da?ͭv ̭tcFS@ *zH7(z_nqbu4וuyEV3yН;_:KsΏj F{`%?޼Wo=rVΕ\S7=mOk")ڋ_Ԗ+ķzpΎ\`r7P* W- l߼ 35!۩,fER o Z!ߤLm_mau+^k$/*OXJ6e@c5O neH96szl/oYf-e։59V$^|X1L4 +xj((K7{.r$rpDkҽ>u]L/g;2(P>kA~i//m~ 4*V-I+L *`l{;hOҗf>V\ߊbd= Tw߁^<=Ge!%@@ aLD.lKgCոl`ڡtq"o(7=X67ཝ ~Vxr>̪vmp/ ٳ1,ЌBMwȭn zp7)PAgXt~D)Lc{4J3\0k`꤯ 7v6FhL]L&QX#J:*65S~W} jqh!PSa` UH+40B8Ûi1=H3r3#mz^C GJk&t];xVy k+mLtZ8Ow| e޼vwO %YՉJ:\ mݹ]0=!5&6lRW/ժsZE=4|O/]YkJMU0}j2Ksc9jX>uɵFɅ%L3P}"Z{2ֱ:r敊V.իۺoIt=p<|SR=U%=,hpqـjcEl~%:tdS6ɝ2Md.4qt5: roEVIv# ,@'EꊍBLS{j" p77GV\oz~}C@>ܝ scH;">u^tSY|m~ϯ9$.+Ja SН:,˘*!̆\oX|J71>B$!iʎoFeOWJƈ\氟aHp=Sѥ-2ȘhD MQ VHxL~1&IJE< ,iMmahno|wJpbZŘ!by^r {fĔy 4{q\11Faŷ^$l;b21#bH9+=%yg tQR*etQ:..( oIYPXP؟S?pk2ꥦHbu~kfvK) '.X`,2E<ezY<>we~t:&Z!_5KfltQQ({b8M u?؃3,ȏ*nN ѹrPh$`x=9~im&ta~X{dO ( @Ka1c~Po֔J$2 >(%>gٕa)걪VR?cPw^7D+*z+YT( I+;}^(GL€،\ݹ1C 9^9nIQst/Q{}ZGݪ;Gݓ/ݫ/u_hZxv2f&SRo4ešx*B*rKxu< /%Lqx&0!̟D~D(/& ƕ^-ӄ-xec&urr|j%6N#g5^Lg#ǮuԦF(hq`1D'M&7bS>oI]hF&5+:v<)ssʯz}q 8SޅnN9rz} झS~ O>9NyY_9)4;'9пNN?ӹ)wrWh~/y|9s_/}/r{ȡE^^'esNS~909{ s#?0~9ׅws?]/rqWU?9{9^}~Z_ S}y>>oʁorڿi&s$CPʑ.N pr+QT/ޯ<4|sYU~vïUX^йZ*4ˑ*Kҿw2~62A\wO aqʍz^S_xڞꖽpLڭe]9hq_l %^a/ ^敽$< xEB+gٔ@#X{#uO'NW6#ﹺ d^)WsU}Ӊ{Z?Ś/Yy<qLklžȁW`T?'%Y#/ܻGzʉnS'?êxĿ+N©gݞރ}n7fRn@xʘçӚ޴\v<2kݫ++#BAf_b 5y?'OtVfw 4;ٽ.T+6:7Lq3[ às H??/j'܌3X\w{A7i__WmЙM%aCeGӰXS/P3 !GaW@jer Er)<螉9Є~54]M4pGm ]w Ɵn ؑ)xT-kZYoZԪw俓k$2G0`HMjJ]Nlժ~\,)g /(@#غ̷7xQ#xC7":aRq p+E!'\Cx' !׫2&dofE߰Raw8cS+x;r$I ?,(nY\AdbkO]BfCVyx; e|1.'\ŠMC7ao/aKZöpZ;l=d2dj Y(}b)049Khw,tSAqߡ=GC1<:ed`+' KDr&ߢjF5 T*A[`\Egq Z<6T?rqhHN,} ^ B3s{Ī]3EDF}q!rE> ]oB3S<pb2 ?L/u xn'qg-\-L&$C&;Li$AG[zhLR,fh`Erd9~UZQ'8ۈqef~x$""H "s{B|%؄ZsJdBZ$}M)Atg,HnM쭨Fo׶+2}jSo:h}v;W35;j񋩣k cTF\|gȌQ)xރAR$~hB"مxދ?B 7g6M|c9*=>S2m-(Eǝ.r};{,dv/+0bŽϥOvHyUOD._M%CbF$] "!_Saoily7 FϨn "@"drtPŗ-;waSF)f'VFp)hFNcx{GCq޴5]W]*i|?Ge Lt8͡o0kn>7q$LsizQڃ`+gq?d|;bSp?pM62QTĻ )ۉYj%xd휙'mrxs@DqLgHvxGml<^:yl뎮E{cuݎüжJWt{]!Kb C>`mR>ǔK ]'[٧3й?-R/e[͌K_X ( LwEN8u vAѪ v7"aa^o1n,$@Ss;=Vcm;pSz2 Qm`-N \70(g|Ntu ۊ|Va=rkbcΜ6 *χŀ{̾Yf#9uVRdGB~Ddaܐ$Z-*?҂g' Q\F$/(y lc+m5'0X1+ (R9K&t>0 'Ɣ ϰO"- s+׶9),cכS'>U 3 .^3Ơ`{e75SF <"!ACWqk @{i!׆!y0Ǖ2DM1F(ͦ,1f& Ax =`#hxb "nRh1)Lb'k%I 'R%la, !r3 kEV F.t3R/4xq{ϢQəȩ8vU_|JѬd;j +39ʧ3~q (X+.9 wҝX;EB(O}u9rC*g꛺UNE'7zQ}B=FBl4.$7·y:?C[7nyQ)h,)ZN zWtEgw 6A|>hy6xL g UjT;IxdM_l+:cSEᘸe=WFs(1{l~ )CUs̥D/4^JC\qrx6 }OTar$~XXqg;\d†[hxb7&;a1Բ6+