Topics:

DHS gains cybersecurity oversight power

July 11, 2010 | By David Perera

Tools

The Homeland Security Department is in charge of overseeing federal civilian agency cybersecurity operations and incident response, according to a July 6 memo from the Office of Management and Budget.

The memo, signed by Peter Orszag, OMB director, and Howard Schmidt, the White House cyber czar, states that DHS has the power to:

Oversee the governmentwide and agency-specific implementation of and reporting on cybersecurity policies and guidance;
oversee and assist governmentwide and agency-specific efforts to provide adequate, risk-based and cost-effective cybersecurity;
oversee the agencies' compliance with FISMA and developing analyses for OMB to assist in the development of the FISMA annual report;
oversee the agencies' cybersecurity operations and incident response and providing appropriate assistance; and
annually review the agencies' cybersecurity programs.

DHS's power applies to all federal agencies, except the Defense Department and the Central Intelligence Agency, according to the memo.

DHS's lack of direct cybersecurity power over other federal agencies was a subject during a June 16 hearing of the House Homeland Security Committee. During the hearing, panel witness Stewart Baker, a partner in the law firm Steptoe and Johnson and a former DHS assistant secretary for policy, questioned whether DHS can force other agencies to enact cybersecurity provisions as it sees fit.

"The difficulty with telling agencies what to do is that you're telling them to spend money that they were going to spend on something else," he said. "There needs to be support from OMB to either say, 'We can find the money,' or 'I'm sorry, take the cut,'" he added.

The memo states that OMB will responsible for "the development and approval of the cybersecurity portions" of the annual budget request.

For more:
- download the OMB memo, M-10-15 (.pdf)

Filed Under

cybersecurity, DHS, federal IT acquisition, House Homeland Security, Howard Schmidt, OMB, Peter Orszag

Comments

View the discussion thread.

Popular Stories

THE LIBRARY: WEBINAR

Coping with Consumerization - Managing Mobile Devices in Federal Agencies

| Now on demand | Sponsored by Centrify

Smart mobile devices are clearly on their way to pervasiveness in federal agencies. The notion that the government can adopt consumer technology on its own terms - that individual employees can even bring their own devices - is gaining once unthinkable currency. But as mobile devices turn from dream into reality, questions of management and policy arise. Strong cybersecurity obviously is a necessity - but how much security such as logon timeouts can users accept before they start attempting to circumvent it? Will system managers be able to track the location of devices 24 hours a day - and so also know where the employee using them also is? If devices are BYOD, how can agencies be certain that matters such as loss and theft are reported quickly enough, especially if the standard policy response is to remotely wipe a missing device? Watch now.

MORE ITEMS

Latest Commentary

No need to rush to thin client

How Congress fear mongers cybersecurity

Three letters Steven VanRoekel won’t say…yet UPDATED

Time for a new DoD memo on open source

Play Chinese hacker cliche bingo with taxpayer-funded report

Management of ChangeJune 3-5 — Cambridge, MD
The ACT-IAC AcademyMay 16, June 13
info360 Conference & ExpoJune 12-14 — New York

MORE EVENTS

Topics:

DHS gains cybersecurity oversight power

Filed Under

Comments

Popular Stories

THE LIBRARY: WEBINAR

Latest Commentary

EVENTS

Press Releases

Featured Jobs

Sponsored Links

A publication of FierceMarkets

The FierceMarkets Network:

Telecom

Healthcare

Government

Energy

Life Sciences

Enterprise IT

Finance

Topics:

DHS gains cybersecurity oversight power

Filed Under

Comments

Join 22,000+ Insiders SIGN UP FOR OUR NEWSLETTER

Popular Stories

THE LIBRARY: WEBINAR

Latest Commentary

EVENTS

Press Releases

Featured Jobs

Sponsored Links

A publication of FierceMarkets

The FierceMarkets Network:

Telecom

Healthcare

Government

Energy

Life Sciences

Enterprise IT

Finance