Critical infrastructure protection : current cyber sector-specific planning approach needs reassessment : report to congressional requesters.

Format:

Book

Government document

Author/Creator:

United States. Government Accountability Office

Contributor:

Powner, David A.

Language:

English

Subjects (All):

United States. Department of Homeland Security--Rules and practice--Evaluation.

United States.

United States. Department of Homeland Security.

Cyberterrorism--United States--Prevention.

Cyberterrorism.

Cyberinfrastructure--Security measures--Government policy--United States.

Cyberinfrastructure.

Computer networks--Security measures--Government policy--United States.

Computer networks.

Infrastructure (Economics)--Security measures--Government policy--United States.

Infrastructure (Economics).

Computer networks--Security measures--Government policy.

Cyberterrorism--Prevention.

Genre:

Rules and practice.

Physical Description:

1 online resource (i, 61 pages) : illustrations

Other Title:

Current cyber sector-specific planning approach needs reassessment

Place of Publication:

[Washington, D.C.] : U.S. Govt. Accountability Office, [2009]

Summary:

The nation's critical infrastructure sectors (e.g., energy, banking) rely extensively on information technology systems. The Department of Homeland Security (DHS) issued guidance in 2006 that instructed lead federal agencies, referred to as sector-specific agencies, to develop plans for protecting the sector's critical cyber and other (physical) infrastructure. These agencies issued plans in 2007, but GAO found that none fully addressed all 30 cyber security-related criteria identified in DHS's guidance and recommended that the plans be updated to address it by September 2008. GAO was asked to determine the extent to which sector plans have been updated to fully address DHS's cyber security requirements and assess whether these plans and related reports provide for effective implementation. To do this, GAO analyzed documentation, interviewed officials, and compared sector plans and reports with DHS cyber criteria. GAO recommends that DHS assess whether existing sector-specific planning processes should continue to be the nation's approach to securing cyber and other critical infrastructure and consider whether other options would provide more effective results. DHS concurred with the recommendation; however, it took exception with certain report facts and conclusions. GAO addressed these comments, but they did not result in substantive report revisions.

Notes:

Title from cover screen (GAO, viewed Nov. 2, 2009).

"September 2009."

Includes bibliographical references.

"GAO-09-969."

OCLC:

462245747