Government Documents, Laws, Testimonies or Reports; Cybersecurity Policy; and Cybersecurity
Information Technology (IT) Security Essential Body of Knowledge (EBK): A Competency and Functional Framework for IT Security Workforce Development
| Title: | Information Technology (IT) Security Essential Body of Knowledge (EBK): A Competency and Functional Framework for IT Security Workforce Development (ID: CSD5182) | | Origin: | Contributed by Organizations or Campuses (10/03/2007) | | Type: | Government Documents, Laws, Testimonies or Reports | | Abstract: | This federal register notice informs the public and interested stakeholders that the Department of Homeland Security (DHS) is making available for public review and comment ``Information Technology (IT) Security Essential Body of Knowledge (EBK): A Competency and Functional Framework for IT Security Workforce Development.'' This framework is intended to assist the public, private, and academic sectors with strategic IT security workforce development initiatives including professional development, training and education. The EBK is not an additional set of DHS guidelines, and it is not intended to represent a standard, directive, or policy by DHS. Instead, it further clarifies key IT security terms and concepts for well-defined competencies, identifies notional security roles, defines four primary functional perspectives, and establishes an IT Security Role, Competency, and Functional Matrix. | | View this resource: | |
Critical Infrastructure Protection: Department of Homeland Security Faces Challenges in Fulfilling Cybersecurity Responsibilities
| Title: | Critical Infrastructure Protection: Department of Homeland Security Faces Challenges in Fulfilling Cybersecurity Responsibilities (ID: CSD4024) | | Origin: | Contributed by Organizations or Campuses (2005) | | Type: | Government Documents, Laws, Testimonies or Reports | | Abstract: | Increasing computer interconnectivity has revolutionized the way that our government, our nation, and much of the world communicate and conduct business. While the benefits have been enormous, this widespread interconnectivity also poses significant risks to our nation's computer systems and, more importantly, to the critical operations and infrastructures they support. The Homeland Security Act of 2002 and federal policy established DHS as the focal point for coordinating activities to protect the computer systems that support our nation's critical infrastructures. GAO was asked to determine (1) DHS's roles and responsibilities for cyber critical infrastructure protection, (2) the status and adequacy of DHS's efforts to fulfill these responsibilities, and (3) the challenges DHS faces in fulfilling its cybersecurity responsibilities. | | View this resource: | |
Corporate Information Security Working Group:
| Title: | Corporate Information Security Working Group: (ID: CSD3661) | | Origin: | Contributed by the Security Task Force (2004) | | Type: | Government Documents, Laws, Testimonies or Reports | | Abstract: | The Corporate Information Security Working Group (CISWG) was originally convened in November 2003 by Representative Adam Putnam (R-FL). The Best Practices team surveyed available information security guidance. It concluded in its March 2004 report that much of this guidance is expressed at a relatively high level of abstraction and is therefore not immediately useful as actionable guidance without significant and often costly elaboration. In a subsequent phase convened in June 2004, the Best Practices and Metrics teams was charged with refining Information Security Program Elements and developing recommended Metrics supporting each of the elements. This report is the result of that effort and represents a resource that will help Board members, managers, and technical staff establish their own comprehensive structure of principles, policies, processes, controls, and performance metrics to support the people, process, and technology aspects of information security. | | View this resource: | |
Cyber Security Research and Development Act
| Title: | Cyber Security Research and Development Act (ID: CSD2588) | | Origin: | Contributed by Organizations or Campuses (2002) | | Type: | Government Documents, Laws, Testimonies or Reports | | Abstract: | Under the bill, the National Science Foundation (NSF) will create new cybersecurity research centers, undergraduate program grants, community college grants and fellowships. The National Institute of Standards and Technology (NIST) will create new program grants for partnerships between academia and industry, new post-docs, and a new program to encourage senior researchers in other fields to work on computer security. The Cyber Security Act authorizes $880 million over five years for these new programs, to ensure that the U.S. is better prepared to prevent and combat terrorist attacks on private and government computers. Boehlert indicated that he is working with the Senate to develop a companion measure. The resource page on the Cyber Security Research and Development Act includes a PDF of the bill itself, as well as documents that lay the ground work of the bill. | | View this resource: | |
|
