Government Technology - April 2008 - (Page 30) Facing the Unknown The Government Technology IT security survey exposed a troubling lack of knowledge about the nature and frequency of cyber-security attacks against government organizations, although this trend isn’t confined to the public sector. Poll results also indicate that public sector officials continue to struggle with security funding. Within the past two years, how has the volume of cyber-attacks against your organization changed? More Less Same Don’t know Within the past two years, how has the sophistication of cyber-attacks against your organization changed? More sophisticated Less sophisticated Same Don’t know 34% 2% 17% 47% 27% 9% 22% 42% done training and dealt with your policy issues, then your employees don’t click on that link. So is this an internal or an external issue?” Pelgrin added that internal threats encompass a wide range of activities — many of them beyond the normal definition of cyber-crime. “I think we do ourselves a disservice if we’re looking only at the criminal aspect,” he said. “There’s a human aspect to everything we do that can potentially have a vulnerability, a risk and a threat associated with it.” For instance, employees connecting to work systems via poorly protected home computers can bypass security measures and expose organizational networks to security threats. In addition, high-capacity external storage devices, such as MP3 players and USB flash drives, can readily transfer malicious software to government computers. No Money, No Training Given the importance of security awareness in the public-sector work force, the amount of training reported in the survey results is disappointing, Lohrmann said. “At best, only 50 percent appear to be participating in security training,” he said. “So if you’re a front-line person, my concern would be, are you aware of potential attacks? Are you aware that doing something like visiting a social networking Web site might be a risk?” Forty-five percent of respondents said their staffs participate in cyber-security training. More than 35 percent said employees aren’t in a security training program, and another 19 percent didn’t know. Lack of security training may be tied to stagnant security funding. About 30 percent of respondents expected their security funding to remain the same over the next several years. Almost 11 percent expect funding to drop, and 25 percent didn’t know. In a separate question, only 17 percent of respondents said news of recent security breaches had triggered more support for security funding among upper management. And scraping together extra dollars for security won’t get any easier in the foreseeable future. Taylor predicted security funding will take a hit as the weakening U.S. economy takes its toll on public-sector budgets. “There may or may not be a general recession out there, Has your organization experienced a confirmed breach or loss of sensitive information? Yes No Don’t know 10% 54% 36% Have any of your main data trading partners (other public agencies or non governmental third parties) experienced a confirmed breach or loss of sensitive information? Yes No Don’t know How have recent high-profile security incidents impacted your organization? (Please check all that apply.) More support for security funding among upper management Stronger security policies Greater awareness of cyber-threats Greater enforcement of existing security policies A chilling effect on use of technology and deployment of new applications None of the above How do you expect security funding for your organization to change over the next two years? It will probably increase It will probably decrease It will probably stay the same Don’t know 36% 11% 28% 25% 17% 48% 63% 44% 8% 13% 15% 33% 52% APR_08 30 http://www.govtech.com
Table of Contents Feed for the Digital Edition of Government Technology - April 2008 Government Technology - April 2008 Contents Point of View Big Picture The Last Mile On the Scene Four Questions for... Freeze Frame How Safe Is Your Data? Easy Street Gadget Overload Indiana Overhaul First Person: A Better Bill Data Defense Strength in Numbers Public Storage Products Two Cents Spectrum Personal Computing signal:noise Government Technology - April 2008 Government Technology - April 2008 - Government Technology - April 2008 (Page 1) Government Technology - April 2008 - Government Technology - April 2008 (Page 2) Government Technology - April 2008 - Government Technology - April 2008 (Page 3) Government Technology - April 2008 - Contents (Page 4) Government Technology - April 2008 - Contents (Page 5) Government Technology - April 2008 - Contents (Page 6) Government Technology - April 2008 - Contents (Page 7) Government Technology - April 2008 - Point of View (Page 8) Government Technology - April 2008 - Point of View (Page 9) Government Technology - April 2008 - Big Picture (Page 10) Government Technology - April 2008 - Big Picture (Page 11) Government Technology - April 2008 - The Last Mile (Page 12) Government Technology - April 2008 - The Last Mile (Page 13) Government Technology - April 2008 - On the Scene (Page 14) Government Technology - April 2008 - On the Scene (Page 15) Government Technology - April 2008 - Four Questions for... (Page 16) Government Technology - April 2008 - Four Questions for... (Page 17) Government Technology - April 2008 - Freeze Frame (Page 18) Government Technology - April 2008 - Freeze Frame (Page 19) Government Technology - April 2008 - Freeze Frame (Page 20) Government Technology - April 2008 - Freeze Frame (Page 21) Government Technology - April 2008 - Freeze Frame (Page 22) Government Technology - April 2008 - Freeze Frame (Page 23) Government Technology - April 2008 - Freeze Frame (Page 24) Government Technology - April 2008 - Freeze Frame (Page 25) Government Technology - April 2008 - How Safe Is Your Data? (Page 26) Government Technology - April 2008 - How Safe Is Your Data? (Page H1) Government Technology - April 2008 - How Safe Is Your Data? (Page H2) Government Technology - April 2008 - How Safe Is Your Data? (Page 27) Government Technology - April 2008 - How Safe Is Your Data? (Page 28) Government Technology - April 2008 - How Safe Is Your Data? (Page 29) Government Technology - April 2008 - How Safe Is Your Data? (Page 30) Government Technology - April 2008 - How Safe Is Your Data? (Page 31) Government Technology - April 2008 - Easy Street (Page 32) Government Technology - April 2008 - Easy Street (Page 33) Government Technology - April 2008 - Easy Street (Page 34) Government Technology - April 2008 - Easy Street (Page 35) Government Technology - April 2008 - Gadget Overload (Page 36) Government Technology - April 2008 - Gadget Overload (Page 37) Government Technology - April 2008 - Gadget Overload (Page 38) Government Technology - April 2008 - Gadget Overload (Page 39) Government Technology - April 2008 - Indiana Overhaul (Page 40) Government Technology - April 2008 - Indiana Overhaul (Page 41) Government Technology - April 2008 - First Person: A Better Bill (Page 42) Government Technology - April 2008 - First Person: A Better Bill (Page CA1) Government Technology - April 2008 - First Person: A Better Bill (Page CA2) Government Technology - April 2008 - First Person: A Better Bill (Page CA3) Government Technology - April 2008 - First Person: A Better Bill (Page CA4) Government Technology - April 2008 - First Person: A Better Bill (Page CA5) Government Technology - April 2008 - First Person: A Better Bill (Page CA6) Government Technology - April 2008 - First Person: A Better Bill (Page CA7) Government Technology - April 2008 - First Person: A Better Bill (Page CA8) Government Technology - April 2008 - First Person: A Better Bill (Page 43) Government Technology - April 2008 - Data Defense (Page 44) Government Technology - April 2008 - Data Defense (Page 45) Government Technology - April 2008 - Strength in Numbers (Page 46) Government Technology - April 2008 - Strength in Numbers (Page 47) Government Technology - April 2008 - Public Storage (Page 48) Government Technology - April 2008 - Public Storage (Page 49) Government Technology - April 2008 - Public Storage (Page 50) Government Technology - April 2008 - Public Storage (Page 51) Government Technology - April 2008 - Products (Page 52) Government Technology - April 2008 - Two Cents (Page 53) Government Technology - April 2008 - Spectrum (Page 54) Government Technology - April 2008 - Spectrum (Page NW1) Government Technology - April 2008 - Spectrum (Page NW2) Government Technology - April 2008 - Spectrum (Page NW3) Government Technology - April 2008 - Spectrum (Page NW4) Government Technology - April 2008 - Personal Computing (Page 55) Government Technology - April 2008 - signal:noise (Page 56) Government Technology - April 2008 - signal:noise (Page 57) Government Technology - April 2008 - signal:noise (Page 58) Government Technology - April 2008 - signal:noise (Page 59) Government Technology - April 2008 - signal:noise (Page 60)
For optimal viewing of this digital publication, please enable JavaScript and then refresh the page. If you would like to try to load the digital publication without using Flash Player detection, please click here.