White House cybersecurity chief calls meeting to discuss President's agenda
Key focus of Wednesday meeting likely to be use of economic incentives to boost private sector cybersecurity
Computerworld - White House cybersecurity coordinator Howard Schmidt will host a meeting Wednesday to discuss progress and ways to move forward on the cybersecurity agenda outlined by President Barack Obama in May 2009.
Among those expected at the meeting are Homeland Security Secretary Janet Napolitano, and Gary Locke, Secretary of Commerce and several industry representatives, including some from electric utility companies and the vendor community.
The goal of the meeting is "to discuss how the Obama Administration is doing with regard to the cybersecurity strategy that they laid out about this time last year," said Larry Clinton, president of the Internet Security Alliance (ISA), an industry trade group that has been invited to the briefing.
[ Recent related news: GAO slams White House for failing to lead on cybersecurity ]
A key focus of the meeting is going to be on how to use economic incentives to stimulate and improve private sector cybersecurity, Clinton added.
In a White House speech last year, President Obama called on those involved in security issues at government agencies and in the private sector to devise a comprehensive strategy for improving cybersecurity.
He called for a greater focus on goals, management priorities and accountability. Obama also called for the development of a better cyber response capability and a bigger focus on building stronger public and private partnerships around cybersecurity.
Since that call to action, the administration has been moving in the right direction, Clinton said, pointing to milestones such as the appointment of Schmidt as White House Cyber security coordinator and the standing up of a centralized cyber command in the Department of Defense.
A recent White House memorandum clarifying the specific roles of the DHS, Office of Management and Budget and Schmidt's office in cybersecurity matters was also a big step in the right direction, he said.
What has been missing so far, and is therefore likely to receive considerable attention at the meeting, is the issue of how to use economic incentives, such as tax breaks and procurement incentives, to foster better cybersecurity in the private sector, Clinton said.
"I think we'd like to see more momentum built up with respect to the development of market incentives for the enhancement of private sector cyber security," he said.
Although the President has expressed support for such incentives, there has been little legislative action taken so far in this regard, Clinton said. In fact, some of the proposals in Congress have taken the opposite direction and have called for more mandates on the private sector, he said.
"The President has said he is opposed to more mandates. I am not sure if that message has been heard widely," he said.
It is unclear yet to what extent this issue will be discussed at Wednesday's cyber briefing, Clinton said. "It certainly will be my focus," he said.
Alan Paller, director of research at SANS Institute, a Bethesda, MD.-based security training and certification organization, said his pitch at Wednesday's meeting will be for concrete action around cybersecurity enhancements.
"It is time for dates and independently measurable targets for vulnerability reduction, traffic monitoring, software improvement, and identity implementation," Paller said.
"Far too many months have passed for another soft strategy document from DHS or the White House," he said.
Jaikumar Vijayan covers data security and privacy issues, financial services security and e-voting for Computerworld. Follow Jaikumar on Twitter at @jaivijayan or subscribe to Jaikumar's RSS feed . His e-mail address is email@example.com.
Obama and tech
- China set to surpass U.S. in R&D spending in 10 years
- Outgoing federal CIO warns of 'an IT cartel'
- @whitehouse takes on Twitter Town Hall
- Obama's CIO quits
- Little new in Obama cybersecurity proposal
- Feds update IT plan following Obama's 'horrible' comment
- Obama's online trusted ID plan greeted with caution
- U.S. Census tech makeover includes 'oasis' for innovation
- Obama seeks big boost in cybersecurity spending
- QuickPoll: Is Obama's 98% 4G broadband coverage goal realistic?
Read more about Cybercrime and Hacking in Computerworld's Cybercrime and Hacking Topic Center.
- Step Out of the Bull's-Eye Learn about the evolution of targeted attacks, the latest in security intelligence, and strategic steps to keep your business safe.
- Using Cyber Insurance and Cybercrime Data to Limit Your Business Risk This paper examines the challenges of understanding cyber risks, the importance of having the right cyber risk intelligence, and how to use this...
- 5 Tips to Secure Small Business Backdoors in the Enterprise Supply Chain This paper examines the insecurity of the small businesses in the supply chain and offers tips to close those backdoors into the enterprise.
- Comprehensive Advanced Threat Defense The hot topic in the information security industry these days is "Advanced Threat Defense" (ATD). This paper describes a comprehensive, network-based approach to...
- Live Webcast Security Vulnerabilities Associated With Having Local Administrator Privileges Viewfinity will demonstrate how removing admin rights and granularly managing privileges at the application level reduces the attack surface.
- Security Vulnerabilities Associated With Having Local Administrator Privileges Viewfinity will demonstrate how removing admin rights and granularly managing privileges at the application level reduces the attack surface.
- Keep Servers Up and Running and Attackers in the Dark An SSL/TLS handshake requires at least 10 times more processing power on a server than on the client. SSL renegotiation attacks can readily... All Cybercrime and Hacking White Papers | Webcasts