Reporter's notebook: At the DHS National Cyber Security Summit
Officials urged the IT community to take the threat of cyberterrorism seriously
Computerworld - SANTA CLARA, Calif. -- Flanked by two senior officials from the Department of Homeland Security, Amit Yoran, the newly appointed director of the National Cyber Security Division, made his first major policy address since joining the department less than three months ago.
Yoran made his much-anticipated remarks yesterday at the inaugural DHS National Cyber Security Summit, referred to jokingly by Tom Ridge, secretary of homeland security, and Robert Liscouski, assistant secretary for infrastructure protection, as "Amit's coming out party."
If there was a central theme that ran through the remarks of all three DHS officials, it was the need to create a sense of urgency, to start taking action on tough issues facing cybersecurity at all levels of society, and to begin to think differently about future threats to the nation.
Yoran, the former director for vulnerability assessment at the Defense Department's Computer Emergency Response Team and former vice president for worldwide managed security services at Symantec Corp., said the nation could be witnessing "just the beginning of what could become a critical national weakness."
He compared the IT community's perception of future cyberterrorist threats to the early days of military air power, when most military thinkers dismissed the use of air power in war as ineffective.
"We need to be thinking about how today's advances in cyberspace can be turned against us," said Yoran. Even though most cyberattacks have so far proved unsophisticated and have been predominantly criminal in nature, "we cannot count on that forever or even for long," said Yoran. He was referring to the threat of terrorist-sponsored, coordinated attacks on critical infrastructures.
There was an air of tension at the summit, stemming from a Computerworld report that raised questions about the motivations and role of the various IT vendor associations that sponsored the event (see story). Harris Miller, president of the Arlington, Va.-based Information Technology Association of America (ITAA), even made a point during a news conference to take issue with what he called "erroneous" comments made about the lobbying power of the ITAA and other groups.
In an exclusive interview with Computerworld, Yoran acknowledged that questions about vendor influence are valid. But he flatly denied that the DHS is following the antiregulation views of the ITAA, the Business Software Alliance and TechNet.
Yoran also acknowledged the lack of critical-infrastructure operators and other end-user companies attending the summit. Only eight such companies were among the 334 registered attendees. But he said he and others from DHS would be meeting with those organizations in the coming weeks and months.
If there was one issue the DHS
- Mobile First: Securing Information Sprawl Learn how the partnership between Box and MobileIron can help you execute a "mobile first" strategy that manages and secures both mobile apps...
- Cybersecurity Imperatives: Reinvent your Network Security The Rise of CyberSecurity
- Surescripts Case Study- Securing Keys and Certificates Surescripts implemented Venafi's Trust Protection Platform™ to secure digital keys and certificates, ensure the privacy and confidentiality of electronic clinical information for its...
- Ponemon 2014 SSH Security Vulnerability Report According to research by the Ponemon Institute, 3 out of 4 enterprises have no security controls in place for SSH which leaves organizations...
- Responding to New SSL Cybersecurity Threat The featured Gartner research examines current strategies to address new SSL cybersecurity threats and vulnerabilities.
- Deep Dive into Advanced Networking and Security with Hybrid Cloud Security and networking are among the top concerns when moving workloads to the cloud. VMware vCloud® Hybrid Service™ enables you to extend your... All Security White Papers | Webcasts
Our new bimonthly Internet of Things newsletter helps you keep pace with the rapidly evolving technologies, trends and developments related to the IoT. Subscribe now and stay up to date!