Government Documents, Laws, Testimonies or Reports and Contributed by the Security Task Force
Corporate Information Security Working Group:
| Title: | Corporate Information Security Working Group: (ID: CSD3661) | | Origin: | Contributed by the Security Task Force (2004) | | Type: | Government Documents, Laws, Testimonies or Reports | | Abstract: | The Corporate Information Security Working Group (CISWG) was originally convened in November 2003 by Representative Adam Putnam (R-FL). The Best Practices team surveyed available information security guidance. It concluded in its March 2004 report that much of this guidance is expressed at a relatively high level of abstraction and is therefore not immediately useful as actionable guidance without significant and often costly elaboration. In a subsequent phase convened in June 2004, the Best Practices and Metrics teams was charged with refining Information Security Program Elements and developing recommended Metrics supporting each of the elements. This report is the result of that effort and represents a resource that will help Board members, managers, and technical staff establish their own comprehensive structure of principles, policies, processes, controls, and performance metrics to support the people, process, and technology aspects of information security. | | View this resource: | |
Protecting Our Nation's Cyber Space: Educational Awareness for the Cyber Citizen
| Title: | Protecting Our Nation's Cyber Space: Educational Awareness for the Cyber Citizen (ID: SEC0407) | | Author(s): | Rodney J. Petersen (EDUCAUSE) | | Origin: | Contributed by the Security Task Force (2004) | | Type: | Government Documents, Laws, Testimonies or Reports, Presentations/Speeches | | Abstract: | Over the last decade, the number of computers connected to the Internet has increased significantly. As a result, the discovery and exploit of a vulnerability in a major software program has become a threat to the stability of the Internet and the continuance of commerce. For example, the Blaster worm infected over 400,000 computers worldwide in less than 5 days. This level of infection occurred despite the fact that the patch that would have prevented infection had been available for over a month. At the same time, millions of copies of the SoBig.F worm spread across the Internet in one of the fastest attacks ever recorded. In fact, about one in three internet users are infected with a virus or worm every year. Moreover, research by security firm, Qualys, Inc., indicates that as the furor over a vulnerability dies down, the number of unpatched systems begins to once again increase. This leads to the chilling conclusion that worms could make second appearances, exploiting the same vulnerabilities. So, why aren't cyber citizens patching their systems, installing firewalls and keeping their anti-virus programs up to date? What are the best tools available to increase our cyber protection? This hearing will examine the current public and private initiatives underway to educate home users and small business on basic cyber security. Among the initiatives presented will be those aimed at small business, children, older students and the average home user. | | View this resource: | |
|
