Who's In Charge Of Computer Competence Inside #MyStupidGovernment ?
In the USA, it's supposed to be NIST, the National Institute of Standards and Technology. They have a Computer Security Division. Within the division they have groups dedicated to Cryptographic Technology, Secure Systems and Applications, Security Components and Mechanisms, Security Engineering and Risk Management, Security Testing, Validation and Measurement. They regularly publish documentation regarding cybersecurity, including the 'Cybersecurity Framework.'
But what is all this worth if every department within #MyStupidGovernment ignores best practices and is essentially on their own deciding how to handle their own computer security, each with their own level of competence, if any? This is a very old problem. It took #MyStupidGovernment nine (9) years to admit their computers exposed to the Internet were being consistently and thoroughly hacked by China: Criminal Nation. That was as of 2007. We're eleven years on from that dire embarrassment, and nothing has been learned, changed, improved, perfected?
Hey vehement homeland security conservatives! Hey government executives and secretaries! You all have to learn this computer security stuff in depth and apply it to our government if you want the USA to be relevant and competent in the world. We're losing the cyber war. Our country is blatantly suffering from our cyber-ignorance and laziness, despite the fact that a great deal of that cyber technology continues to be invented inside the USA. Shameful, with only more shameful on the horizon. (0_o)
Biting the hand that feeds IT
