From Federal News Radio:
With just one month under his belt, the country’s first federal chief information security officer says he’s launching a one-stop-shop for cybersecurity guidance and good ideas.
Cyber.gov will be a repository for best practices, said retired Brig. Gen. Greg Touhill, the federal CISO, during an Oct. 11 AFCEA chapter Cybersecurity Summit in Washington, D.C.
“Sadly, nearly every single cyber incident that our [Industrial Control Systems Cyber Emergency Response Team] responds to could be prevented,” Touhill said. “Failure to keep systems properly patched and configured, a compromised username and password when multifactor authentication is available, antique and unsupported equipment and execution of of unauthorized malicious code, are common and preventable issues that lead to what many of you have pointed out are really epic failures. I believe a contributing factor to these epic failures is risk not being properly managed.”
The site will launch in a couple of weeks, and Touhill said his staff is working on setting up basic guidance on the site.