security

OMB’s Recent CIO Memorandum: Clarifying and Reinforcing CIO Primary Responsibilities

Submitted by on Fri, 12/29/2017 - 16:27
A new memorandum details four areas for which all Federal Chief Information Officers (CIOs) have authority and “a lead role”: Governance, Commodity IT, Program Management, and Information Security.

Earlier this month, OMB Director Jacob Lew released a memorandum for the heads of all Federal Departments and Agencies, which focused on four areas for which all Federal Chief Informatio

Perspectives on Power, Security, and Leadership with General Anthony Zinni (USMC Ret.)

Submitted by on Fri, 12/29/2017 - 16:05
In this complex and dynamic world of changing demands, the nature of security today requires that it be conceived more broadly than ever before. Some have called for a new vibrant strategic direction for US national security and foreign policy. Today's context presents a unique set of challenges and requires a new way of thinking about power, security, and leadership.

Seven Management Imperatives: Imperative Five - Respond to the New Security Environment

Submitted by on Fri, 12/29/2017 - 12:57
The price of interconnectivity is the continuing tradeoff between opportunity and vulnerability. Government organizations need to enact policies to protect networks and networked information.

 

Perspectives on the Future of Power, Security, and Leadership with Professor Joseph S. Nye, Jr., Harvard University

Submitted by on Fri, 12/29/2017 - 12:53
A decade into the 21st century, the U.S. has encountered many unforeseen challenges and seemingly unimaginable opportunities. In this ever-more complex world, many question the proper use of power, leadership, and security in international relations. What is smart power? How do the challenges of the 21st century demand a reshaping and redefining of leadership? Professor Joseph S.

IT Governance, Risk Management, Security & Privacy – a Perspective for the C-Suite

Submitted by on Wed, 12/27/2017 - 13:14

Today, more than ever, with the increasing number of cybersecurity attacks on government organizations and threats of data breaches to the privacy of government officials and their staffs, and government contractor staffs, strong IT Governance based on sound IT risk management is critical to restoring confidence in the security and privacy protections provided by our Federal Government.  This is no longer purely an IT technology issue but an issue that must be addressed at the top layers of government – from the “overseers” of IT policy (e.g., Office of Management and Budget (OMB), National

A Roadmap for Implementing and Improving IT Governance

Submitted by on Wed, 12/27/2017 - 12:36

As previously discussed, all Federal departments/agencies were charged with establishing an IT Governance program per OMB Memorandum M-09-02.

Creating the appropriate environment for successful adoption of IT Governance that supports improved security

Submitted by on Wed, 12/27/2017 - 11:14

To start, guiding principles can ensure that all staff have a common understanding of the core IT Governance criteria. These guiding principles let staff know that IT Governance is recognized by the C-Suite as critical to the organization’s success, and that IT resources result in maximum effectiveness and efficiency across the organization. It ensures that security is integrated in meeting requirements and delivers benefits set by an organization’s business leaders.

New Organizational Structure Required for an Effective IT Governance Program With Strong Security

Submitted by on Wed, 12/27/2017 - 10:00

This consists of a definition of IT Governance communicated throughout the agency, and the establishment of a new organizational structure to ensure the IT Governance Program is effective and continuously improved. Continuing with the Veterans Affairs Department (VA) example discussed in the previous blog, below is the definition VA developed and a generic discussion of the organizational structure that VA adopted.

Benefits of Effective IT Governance with Strong Security

Submitted by on Tue, 12/26/2017 - 17:08

This post is the fourth in a series on how strong IT Governance can help drive effective security across Federal enterprises.  See the first installment.

Pages