IT Public Policy Blogs

60-Day Review of U.S. Government Cyber Security

The Obama Administration is conducting a 60-day review of existing and projected programs and activities to address cyber security within the government as well as owners and operators of the nation's critical infrastructure.

First and foremost, we appreciate the Administration taking initial steps to address cyber security as a tier one national security priority. We’re excited that Symantec has been extended the opportunity to provide our own expertise in the review through a number of different forums. And once the review is finished, we look forward to continuing the dialogue once a set of findings and actions are articulated. Above all, we’d like to make sure that the review does not become simply another report to delay more action. A strong first step to making sure the report is acted upon is for the Administration to follow through on its promise to appoint a senior advisor reporting directly to the President.

I had the honor to work for Richard Clarke when he was Cyber Security Advisor at the White House when the National Strategy to Secure Cyberspace was unveiled in 2003. The recommendations in that report are still largely valid today, but unfortunately were never acted upon fully. There are several priority areas that we believe require urgent attention, including the establishment of clear protocols and communication mechanisms between government and industry for improved situational awareness of and response to large-scale disruptions. Furthermore, a clear strategy for international cyber security engagement also needs to be defined. Re-establishing the role of a cyber security advisor and staff in the White House will provide the focal point needed to coordinate these and other imperative activities to protect the federal government and our nation’s critical infrastructure.

We hope that the results of the 60-day review of the state of cyber security within the government will make that clear.