six of which will go direct to the President
Or rather, his son. Who is 10 years old. He has computers. He is so good with these computers, it's unbelievable.
The latest draft of a cybersecurity executive order to be signed by President Trump has become an unusually precise, report-ordering extravaganza. Executive orders – even those signed by Trump – tend to be relatively short and quite vague, with general policy goals listed and expected to be interpreted by others. The new …
I agree reports are mostly useless, but requiring section 9 companies to expose their risk management policies is worth putting up with some of the less meaningful reports.
A big part of cybersecurity risk today is that no one is shining a light on crap risk management practices - you know, like trading profits on the back of someone else's risk. Make them do it publicly, so when they do get hacked and lose all of OUR data, they can't claim they were unaware of the residual risk.
I think you're right - the best way to get things done in IT is to produce lots of lengthy reports. It never fails. The more reports, the more work gets done. Simples.
Don't forget about the all important committees, review boards, blue-ribbon panels, commissions, independent investigators, task forces, advisory groups, consultants, etc.
I agree that it is not a valid concept for the IT worker in the trenches. However, he is issuing orders to the heads of departments and multiple levels of management above those IT workers to whom reports would be stifling. You know. Those bosses that are rarely seen or even heard from. I understand the intent, but how dare he order those bosses to actually work. There could well be a coup if this order interferes with golf schedules.
This project kickoff document outlines who does what on the macro-governmental scale. Each department will produce documents of what each systems vulnerabilites are and how they are going to be remediated. Given that President Trump does have expertise in dealing with the interlocking dependencies of the construction of large buildings, he is identifying issues and tasking individuals and departments with producing project plans that will guide the way forward.
It won't change a thing.
The "reports" are just window dressing as NONE of the participants know anything about computers.
And if the reports are as I expect then each one will be some 500-1000 pages each.
Sent to the President? and to one that doesn't read....
Nope. It is obviously just window dressing.
"A report to the President through the DNS"
I love that protocol!
Here are some other reports that are coming in a batch scheduled to be received prior to this last list:
Report on What is a Cyber?
Report on What is Security, I mean really, what are you saying with that one? I don't get it.
Report on What is for Lunch on Friday
Report on the state of the Report List Report
Report on the Report of the List
General Report on Reports
What is a Report?
Seriously Mr Trump? go read Paul Parfomak's 2014 report "Physical Security of the U.S. Power Grid: High-Voltage Transformer Substations", digital shenanigans are the least of your worries it seems.
Since 2003 at least six transformers are known to have been destroyed by rounds from a common relatively small calibre hunting rifle, the FBI can tell you how many other incidents have not been made public for security reasons.
@Black Rat
"the FBI can tell you how many other incidents have not been made public for security reasons."
Did you mean "the FBI can't tell you..."; otherwise they would be able to tell us???? Or do you mean they can tell you the number but not the specifics of the incidents.
Phil.
We really need to stop doing this. Why is this a story about a "2,200-plus-word extravaganza" when Obama's was 3,000 words and that seemed reasonable? Trump is an idiot in general but when he does something well, we need to recognise and applaud that rather than automatically attacking everything he does.
Why is this a story about a "2,200-plus-word extravaganza" when Obama's was 3,000 words and that seemed reasonable?
Because it's such a complete reversal from his previous EOs. Just look at the chaos he's created with the travel ban, which wasn't consulted upon. You don't applaud someone for suddenly starting to do something which was standard procedure before he took office.
Sure, complain about the travel ban. The travel ban is nuts.
But if you complain about this EO (which was reasonable) then you start to look like someone who just hates the man. Then when you complain about the travel ban EO, no one is listening because they know that you always complain whatever he does.
the amount of paper this will generate across Washington, someone is gonna have to find some more trees!
also, most of this information Should have been in his cybersecurity briefings and shouldn't need this, but then again, he still hasn't appointed someone qualified to give one of those....
"the amount of paper this will generate across Washington, someone is gonna have to find some more trees!"
We Brits will have power cuts if this carries on! We import huge amounts of wood chips from the USA for our "green" power stations. If there paper demand rises then wood chip exports will fall. No one ever considers the unintended consequences.
In future, in line with rapidly established policy, all pertinent (or derogatory) information derived from reports or preachings for the people to worship will be tweeted (in line with all cybersecurity report findings) by His Majesty The President ...
Henceforth Presidential statements shall be known as "Trump's Information Tweets" (TITS). Phrases such as 'Look at that TIT!', 'Oh no, TIT alert!' and 'Have you read what that TIT said?' should all be used liberally.