O.K., now I am convinced that inmates are running the proverbial asylum. So far DHS has hired an IT lobbyist and an entrepreneur, to direct the cyber security program for the United States government. On what planet should this occur? Although I am sure these gentlemen are intelligent in their own right, how can you hire people to improve our information security posture as a nation, when they have not been actively involved in solving these issues at any other level?

Cyber-storm II takes place and that is supposed to make us feel better? Are you kidding? Look at the lack of integrated security architecture across government agencies, the absence of true roles and responsibilities, and not to mention accountability for mitigation strategies. G-agencies do not create strategic security plans that are subsequently budgeted for, and then executed. It is still ad-hoc, fire fighting-central in most agencies.

When will senior government management get smarter about those who are hired? Hire individuals who have true security operational experience to direct organizations. Provide them a budget and staffing support. You want improvements not new talking heads attempting to advance their own careers.

Hire those who know how to do, not talking heads from speaking engagements??.

[ reply ]

Link to this comment: http://www.securityfocus.com/comments/newsbriefs/708/2411#2411