ABSTRACT

U.S. Computer Emergency Readiness Team Makes Progress in Securing Cyberspace, but Challenges Remain   [open pdf - 2MB]

"US-CERT [U.S. Computer Emergency Readiness Team] has made progress in implementing a cybersecurity program to assist federal agencies in protecting their information technology systems against cyber threats. Specifically, it has facilitated cybersecurity information sharing with the public and private sectors through various working groups, issuing notices, bulletins, and reports, and web postings. Further, the Office of Cybersecurity and Communications has established a unified operations center that includes US-CERT to address threats and incidents affecting the nation's critical information technology and cyber infrastructure. To increase the skills and expertise of its staff, US-CERT has developed a technical mentoring program to offer cybersecurity and specialized training. Still, US-CERT can further improve its analysis and warning program. For example, US-CERT must improve its management oversight by developing a strategic plan, establishing performance measures, and approving policies and procedures to ensure that its analysis and warning program is effective. It must also ensure that it has sufficient staff to perform its mission. Additionally, it should improve its information sharing and communications coordination efforts with the public. Finally, US-CERT needs to improve its situational awareness and identification capability by monitoring the federal cyber infrastructure for network anomalies in real-time."

Report Number:
Department of Homeland Security, Office of Inspector General, Report No. OIG-10-94
Publisher:
Date:
2010-06
Copyright:
Public Domain
Retrieved From:
Lessons Learned Information Sharing (LLIS)
Format:
pdf
Media Type:
application/pdf
URL:
Help with citations