Infosec certification worse than inadequate

Cybersecurity Update – Tune in weekdays at 30 minutes past the hour for the latest cybersecurity news on The Federal Drive with Tom Temin and Amy Morris (6-10 a.m.) and The DorobekInsider with Chris Dorobek (3-7 p.m.). Listen live at or on the radio at 1500 and 820 AM in the Washington, D.C. metro area.

  • Information security certification is getting some tough criticism from the Commission on Cybersecurity for the 44th Presidency. GovInfoSecurity reports that the commission isn’t satisfied with the current certification process. The commission’s findings say that not only is the process inadequate, it creates – in the report’s words – a dangerously false sense of security. It points out that the credentials are more concerned with compliance, not addressing risk. Former Office of Management and Budget official Frank Reeder co-wrote the white paper with Karen Evans, the former head of OMB’s e-government office.
  • The first National Cybersecurity Awareness Challenge is over and the winners have been announced. The challenge for contestants was to develop creative ways to enhance awareness of the importance of cybersecurity and safeguard America’s networks from attacks. Bruce McConnell, Counselor to Homeland Security Deputy Under Secretary Philip Reitinger, tells Federal News Radio about how the ideas will be implemented. (Click here for more.)
  • U.S. and British authorities are working to resolve the long-delayed extradition of a London hacker who allegedly infiltrated American military computers. President Obama and British Prime Minister David Cameron say they discussed the case during their White House meeting Tuesday. They intend to work together to find a solution. Gary McKinnon is charged with breaking into 97 computers belonging to NASA, the Defense Department and several military branches. McKinnon says he was looking for evidence of UFOs.

Check out all of Federal News Radio’s coverage of cybersecurity issues here.