Home > United Nations Online Network in Public Administration and Finance (UNPAN)
1. Global
Global
2. Africa
Africa
3. Arab States
Arab States
4. Asia & Pacific
Asia & Pacific
5. Europe
Europe
6. Latin America & Caribbean
Latin America & Caribbean
7. North America
North America
UNPAN North America
Public Administration News  
Share
Canada Should Follow U.S. Sybersecurity Framework, Says Expert
Source: itworldcanada.com
Source Date: Thursday, February 13, 2014
Country: Canada
Created: Feb 17, 2014

Canadian enterprises and governments should adopt a just-released American government framework for tightening IT security of critical infrastructure, says a security consultant.

“I don’t think we should re-invent the wheel,” Kevvie Fowler, a partner in the forensic advisory services at KMPG Canada, said of the guidelines released this week by the federal National Information Technology Laboratory (NIST). “If you look at what has been done, it already leverages concepts from internationally-adopted standards like ISO  27001/2 and a few others.”

In 2010 the Harper government announced a national strategy  to better protect critical infrastructure calling for the public and private sectors to work on addressing risks. But two years later the Auditor General released a report complaining the strategy still didn’t have an action plan. That plan has since been completed.

Public Safety Canada has released a guideline of best practices for incident response. However, Fowler said the NIST document goes further.

Meanwhile, as part of its effort to work on an infrastructure security plan the Canadian government is holding an invitation-only conference in New York at the end of the month.

Called a Framework for Improving Critical Infrastructure,  it’s aimed at organizations, regulators and consumers to create or improve cybersecurity programs.

The document provides a common language to address and manage cyber risk in a cost-effective way based on business needs, without placing additional regulatory requirements on businesses, NIST says.

“The framework provides a consensus description of what’s needed for a comprehensive cybersecurity program,” Under Secretary of Commerce for Standards and Technology and NIST director Patrick Gallagher said in a statement. “It reflects the efforts of a broad range of industries that see the value of and need for improving cybersecurity and lowering risk. It will help companies prove to themselves and their stakeholders that good cybersecurity is good business.”

In short, it’s a series of best practices.

News Home

 Tag This
 Tell A Friend
del.icio.us digg this Slashdot
Rate:
0 ratings
Views: 104

Comments: 0 Bookmarked: 0 Tagged: 0



0 Comments | Login to add comment

Site map | FAQs | Terms and Privacy | Contact Us
Copyright 2008-2010 by UNPAN - United Nations Public Administration Network