[CII] welcome to the public CII

Hamilton, Michael Michael.Hamilton at seattle.gov
Wed Nov 25 21:50:40 UTC 2009 

Hello all as well.  I am not a spam bot.

For what are probably obvious reasons, I'd like to discuss a couple things related to local government that are missing from the discussion:

- The amount of CI that is under the purview of local government, and the general inadequacy of applied controls;
- Methods for incentivizing local government to apply those controls, conduct adequate monitoring, etc; and
- Cross-organizational information sharing on a local scale, preferably in near-realtime and automated

In the next few years I'd like to see the federal government come up with some incentives and disincentives to herd the locals into addressing this issue.  For example, the average fraction of IT budget that is spent on security is something like 3-5%.  OK, if the federal government supplies grant funding for a technology project, 4% must be spent on security controls.  How easy was that?

Lastly, I'd like to see the non-word "cyber" purged from our lexicon.

Thank you.

    - mkh

---
Michael K. Hamilton
Chief Information Security Officer, City of Seattle
michael.hamilton at seattle.gov
206.684.7971 (D) / 206.255.6243 (M)


-----Original Message-----
From: cii-bounces at isotf.org [mailto:cii-bounces at isotf.org] On Behalf Of Gadi Evron
Sent: Wednesday, November 25, 2009 1:35 PM
To: cii at isotf.org; Hamilton, Michael
Subject: [CII] welcome to the public CII

Hello all,

This list is now officially open for discussion. The list is not 
moderated, although any new subscriber is auto-moderated until we are 
sure they are not a spam bot.

I'd like to start with a clean slate, and at least for a little while, 
with no set agenda. Many of us discussed what critical infrastructure on 
the internet is, how to define it, and how to protect it, many times 
before. We all have varying ideas, so let's try and be patient until we 
find our feet and what our specific goals are.

Before we put forth any sort of charter or specific issues, I'd like to 
hear from you what you think is lacking in current discussion on the 
subject matter, and what you would like to see happen in the next few years.

People on the list are all very busy individuals, so while we encourage 
discussion, please try and conduct yourselves properly.

CII is co-admin'd by Barry Greene and myself, while some more spots may 
open up as necessary, as we settle into a routine in the coming months.

	Gadi.


-- 
Gadi Evron,
ge at linuxbox.org.

Blog: http://gevron.livejournal.com/
_______________________________________________
CII mailing list
CII at isotf.org
http://isotf.org/mailman/listinfo/cii

More information about the CII mailing list