Cybersecurity: Continued Attention Needed to Protect Our Nation¿s Critical Infrastructure and Federal Information Systems


Book Description

Discusses the cyber threats to critical infrastructure and the Amer. economy. Pervasive and sustained cyber attacks against the U.S. continue to pose a potentially devastating impact on fed. and non-fed. systems and operations. In Feb. 2011, the Dir. of National Intelligence testified that, in the past year, there had been a dramatic increase in malicious cyber activity targeting U.S. computers and networks, incl. a more than tripling of the vol. of malicious software since 2009. This testimony describes: (1) cyber threats to cyber-reliant critical infrastructures and federal information systems; and (2) the continuing challenges federal agencies face in protecting the nation's cyber-reliant critical infrastructures and federal systems. A print on demand report.




Cybersecurity: Continued Attention Is Needed to Protect Federal Information Systems from Evolving Threats


Book Description

Pervasive and sustained cyber attacks continue to pose a potentially devastating threat to the systems and operations of the fed. gov¿t. Many nation states, terrorist networks, and organized criminal groups have the capability to target elements of the U.S. info. infrastructure for intelligence collection, intellectual property theft, or disruption. The dependence of fed. agencies on info. systems to carry out essential, everyday operations can make them vulnerable to an array of cyber-based risks. This statement describes: (1) cyber threats to fed. info. systems and cyber-based critical infrastructures; (2) control deficiencies that make fed. systems vulnerable to those threats; and (3) opportunities that exist for improving fed. cybersecurity.




Effective Model-Based Systems Engineering


Book Description

This textbook presents a proven, mature Model-Based Systems Engineering (MBSE) methodology that has delivered success in a wide range of system and enterprise programs. The authors introduce MBSE as the state of the practice in the vital Systems Engineering discipline that manages complexity and integrates technologies and design approaches to achieve effective, affordable, and balanced system solutions to the needs of a customer organization and its personnel. The book begins with a summary of the background and nature of MBSE. It summarizes the theory behind Object-Oriented Design applied to complex system architectures. It then walks through the phases of the MBSE methodology, using system examples to illustrate key points. Subsequent chapters broaden the application of MBSE in Service-Oriented Architectures (SOA), real-time systems, cybersecurity, networked enterprises, system simulations, and prototyping. The vital subject of system and architecture governance completes the discussion. The book features exercises at the end of each chapter intended to help readers/students focus on key points, as well as extensive appendices that furnish additional detail in particular areas. The self-contained text is ideal for students in a range of courses in systems architecture and MBSE as well as for practitioners seeking a highly practical presentation of MBSE principles and techniques.




At the Nexus of Cybersecurity and Public Policy


Book Description

We depend on information and information technology (IT) to make many of our day-to-day tasks easier and more convenient. Computers play key roles in transportation, health care, banking, and energy. Businesses use IT for payroll and accounting, inventory and sales, and research and development. Modern military forces use weapons that are increasingly coordinated through computer-based networks. Cybersecurity is vital to protecting all of these functions. Cyberspace is vulnerable to a broad spectrum of hackers, criminals, terrorists, and state actors. Working in cyberspace, these malevolent actors can steal money, intellectual property, or classified information; impersonate law-abiding parties for their own purposes; damage important data; or deny the availability of normally accessible services. Cybersecurity issues arise because of three factors taken together - the presence of malevolent actors in cyberspace, societal reliance on IT for many important functions, and the presence of vulnerabilities in IT systems. What steps can policy makers take to protect our government, businesses, and the public from those would take advantage of system vulnerabilities? At the Nexus of Cybersecurity and Public Policy offers a wealth of information on practical measures, technical and nontechnical challenges, and potential policy responses. According to this report, cybersecurity is a never-ending battle; threats will evolve as adversaries adopt new tools and techniques to compromise security. Cybersecurity is therefore an ongoing process that needs to evolve as new threats are identified. At the Nexus of Cybersecurity and Public Policy is a call for action to make cybersecurity a public safety priority. For a number of years, the cybersecurity issue has received increasing public attention; however, most policy focus has been on the short-term costs of improving systems. In its explanation of the fundamentals of cybersecurity and the discussion of potential policy responses, this book will be a resource for policy makers, cybersecurity and IT professionals, and anyone who wants to understand threats to cyberspace.




Computers at Risk


Book Description

Computers at Risk presents a comprehensive agenda for developing nationwide policies and practices for computer security. Specific recommendations are provided for industry and for government agencies engaged in computer security activities. The volume also outlines problems and opportunities in computer security research, recommends ways to improve the research infrastructure, and suggests topics for investigators. The book explores the diversity of the field, the need to engineer countermeasures based on speculation of what experts think computer attackers may do next, why the technology community has failed to respond to the need for enhanced security systems, how innovators could be encouraged to bring more options to the marketplace, and balancing the importance of security against the right of privacy.







National Emergency Communications Plan


Book Description

Every day in cities and towns across the Nation, emergency response personnel respond to incidents of varying scope and magnitude. Their ability to communicate in real time is critical to establishing command and control at the scene of an emergency, to maintaining event situational awareness, and to operating overall within a broad range of incidents. However, as numerous after-action reports and national assessments have revealed, there are still communications deficiencies that affect the ability of responders to manage routine incidents and support responses to natural disasters, acts of terrorism, and other incidents. Recognizing the need for an overarching emergency communications strategy to address these shortfalls, Congress directed the Department of Homeland Security's (DHS) Office of Emergency Communications (OEC) to develop the first National Emergency Communications Plan (NECP). Title XVIII of the Homeland Security Act of 2002 (6 United States Code 101 et seq.), as amended, calls for the NECP to be developed in coordination with stakeholders from all levels of government and from the private sector. In response, DHS worked with stakeholders from Federal, State, local, and tribal agencies to develop the NECP—a strategic plan that establishes a national vision for the future state of emergency communications. To realize this national vision and meet these goals, the NECP established the following seven objectives for improving emergency communications for the Nation's Federal, State, local, and tribal emergency responders: 1. Formal decision-making structures and clearly defined leadership roles coordinate emergency communications capabilities. 2. Federal emergency communications programs and initiatives are collaborative across agencies and aligned to achieve national goals. 3. Emergency responders employ common planning and operational protocols to effectively use their resources and personnel. 4. Emerging technologies are integrated with current emergency communications capabilities through standards implementation, research and development, and testing and evaluation. 5. Emergency responders have shared approaches to training and exercises, improved technical expertise, and enhanced response capabilities. 6. All levels of government drive long-term advancements in emergency communications through integrated strategic planning procedures, appropriate resource allocations, and public-private partnerships. 7. The Nation has integrated preparedness, mitigation, response, and recovery capabilities to communicate during significant events. The NECP also provides recommended initiatives and milestones to guide emergency response providers and relevant government officials in making measurable improvements in emergency communications capabilities. The NECP recommendations help to guide, but do not dictate, the distribution of homeland security funds to improve emergency communications at the Federal, State, and local levels, and to support the NECP implementation. Communications investments are among the most significant, substantial, and long-lasting capital investments that agencies make; in addition, technological innovations for emergency communications are constantly evolving at a rapid pace. With these realities in mind, DHS recognizes that the emergency response community will realize this national vision in stages, as agencies invest in new communications systems and as new technologies emerge.










Public Administration and Public Affairs


Book Description

Updated in its 12th edition, Public Administration and Public Affairs shows readers how to govern efficiently, effectively, and responsibly in an age of political corruption and crises in public finance. With a continuing and corroding crisis occurring, as well as greater governance by nonprofit organizations and private contractors, it is vital that readers are given the skills and tools to lead in such an environment. Using easy-to-understand metaphors and an accessible writing style, Public Administration and Public Affairs shows its readers how to govern better, preparing them for a career in public administration.