Friday, April 20, 2007

Grading On a Curve

The government's security report card should be taken with a great big grain of salt
By now, almost everyone's heard about the "Federal Computer Security Report Card" released last week. Issued by the House Government Oversight and Reform Committee, the report card is based on the Office of Management and Budget's analysis of each federal agency's own reporting on its compliance with the Federal Information Security Management Act (FISMA).

This report card, like every one since FISMA was enacted in 2002, was abysmal. The federal government as a whole recieved a C-. The Nuclear Regulatory Commission and departments of Defense, State, Treasury, Commerce, Education and Agriculture all received failing grades. The Department of Homeland Security received a D, while the Department of Energy (which is responsible for the nation's nuclear weapons and energy programs) received a C-.

So what does this tell us about the security of government networks? Not all that much, actually.

Click here for the full story.

No comments:

About Me

Choose Dyrand Systems as your virtual IT department and focus on growing your business—not on the technology that supports it. You deserve peace of mind when it comes to IT. When you choose Dyrand, you’re choosing more than just an IT firm—you’re choosing an extension of your own team.