DHS Protections Found Wanting

The Department of Homeland Security (DHS) does not fully address critical funding and information sharing issues

Dark Reading Staff, Dark Reading

July 17, 2006

2 Min Read
Dark Reading logo in a gray background | Dark Reading

RESTON, Va. -- The Department of Homeland Security (DHS) does not fully address critical funding and information sharing issues in its recently finalized National Infrastructure Protection Plan (NIPP), according to a report released today by INPUT, the authority on government business. NIPP is defined as a “comprehensive risk management framework that clearly defines critical infrastructure protection roles and responsibilities for all levels of government, private industry, non-governmental agencies and tribal partners.”

“NIPP is a good first step towards the vitally important objective of protecting our Nation’s critical infrastructures,” said Bruce Brody, vice president, information security at INPUT. “NIPP will also provide IT vendors with significant opportunities to get involved in the various planning and protection activities required to harden our infrastructures. Unfortunately, in its present form, NIPP does not go far enough.”

The largest issue with NIPP is the lack of clarity on where the funding for the necessary activities will come from. Instead of allocating specific funding, NIPP relies on existing agency budgets to fund these additional federal-level activities. Another shortcoming of the plan is that it requires the private sector to provide sensitive critical infrastructure information to the federal government. In the wake of recent large-scale data loss incidents at various federal departments and agencies, this will be a difficult request to make of industry vendors.

Despite DHS’ failure to address these critical issues aggressively, INPUT anticipates potentially lucrative business opportunities for vendors providing the relevant technologies and services. “Tracking and pursuing these opportunities will require vendors to have a solid understanding of the core elements of critical infrastructure protection, as well as the capability to deliver efficient and cost-effective solutions across a range of disparate customers,” stated Brody. “In addition, those vendors who can offer common services, capabilities, and technologies that cross sectors and provide maximum protections with the highest level of efficiency will be rewarded.”

Input

Read more about:

2006

About the Author

Dark Reading Staff

Dark Reading Staff

Dark Reading

Dark Reading is a leading cybersecurity media site.

See more from Dark Reading Staff
Keep up with the latest cybersecurity threats, newly discovered vulnerabilities, data breach information, and emerging trends. Delivered daily or weekly right to your email inbox.
Subscribe

You May Also Like

More Insights
Webinars
More Webinars
Events
More Events

Editor's Choice

A laptop on the table with software update progress bar on screen
Vulnerabilities & Threats
5 Zero-Days in Microsoft's October Update to Patch Immediately5 Zero-Days in Microsoft's October Update to Patch Immediately
byJai Vijayan, Contributing Writer
Oct 8, 2024
4 Min Read
Flags of Russia and Ukraine
Cyber Risk
EU Plans Sanctions for Cyberattackers Acting on Behalf of RussiaEU Plans Sanctions for Cyberattackers Acting on Behalf of Russia
byJennifer Lawinski, Contributing Writer
Oct 10, 2024
1 Min Read
A face scan of Indian Prime Minister Modi
Threat Intelligence
AI-Powered Cybercrime Cartels on the Rise in AsiaAI-Powered Cybercrime Cartels on the Rise in Asia
byNate Nelson, Contributing Writer
Oct 10, 2024
4 Min Read
Reports
More Reports
Webinars
More Webinars
White Papers
More Whitepapers
Events
More Events