Homeland Security not so secure

Stephen Withers
Thursday, 21 June 2007 03:52

Your IT - Home IT

The US Department of Homeland Security has admitted to over 800 IT security incidents during 2005 and 2006.

The incidents include break-ins by hackers, virus outbreaks, malware transmitting information to outsiders, missing notebooks, and compromised web sites.

There have even been cases where password-stealing tools have been found on departmental systems.

"'Do as I say, not as I do' policy is a recipe for disaster, and if we are serious about the security risks facing our networks, then we need to start acting and stop posturing," observed Homeland Security Committee chairman Bennie Thompson.

In a prepared statement, Homeland Security CIO Scott Charbo agreed, saying "Certainly, we need to increase our vigilance to ensure that such incidents do not happen again."

"The department takes these incidents very seriously and will work diligently to ensure they do not recur."

The incidents occurred at Homeland Security's head office, and at several of its agencies including Customs and Border Protection, Coast Guard and the Federal Emergency Management Agency.

Part of the problem may be the reduction in funding for the Department's IT security function. The chief information security officer's budget has reportedly fallen from $US17.5 million in 2005 to $US15 million in 2007.