Getting cybersecurity right

[InfoSec News <alerts () infosecnews org>]

http://thehill.com/opinion/op-ed/218237-getting-cybersecurity-right

By Sen. Ron Johnson (R-Wis.)
The Hill
03/26/12

Our nation’s computer systems are vulnerable to online attack. This is a 
growing threat to our economy and our national security. American 
businesses understand this threat — this is why last year they invested 
more than $80 billion in the security of their computer networks.

I came to Washington as the CEO of a manufacturing company. I know 
firsthand that the private sector is choking on a torrent of federal 
regulations. Job creators face a $1.75 trillion — and growing — 
regulatory burden. In his first three years, President Obama issued 106 
regulations that each had more than a $100 million impact on the private 
sector, and hundreds more that imposed smaller but still heavy burdens.

These days, businesses are more likely to hire a lawyer than a new 
employee.

Yet proposals in Congress, advocated by the White House, would give the 
federal government, namely the Department of Homeland Security (DHS), 
power to dictate cyber- regulations to the private sector. Such 
regulations would create a maze of assessments, audits and standards 
that must be obeyed by companies deemed by DHS to be “covered critical 
infrastructure.”

I do not believe this is the right strategy because I have little faith 
in the ability of the federal government to be the leader on 
cybersecurity.

[...]

______________________________________________________________________________
Certified Ethical Hacker and CISSP training with Expanding Security gives
the best training and support.  Get a free live class invite weekly.  Best
program, best price. www.ExpandingSecurity.com/PainPill