DOD Worries Cyber Workers Are Undertrained, Unprepared
February 18, 2013 1:26 PM
comment(s) - last by
DOD is currently rewriting its cyber workforce policy
The U.S. Department of Defense (DOD) is rewriting its
cyber workforce policy
and reviewing current qualifications because it worries that too many cyber experts are underqualified or unprepared for such positions at DOD.
DOD wants to go on a hiring spree of capable cyber experts, but current certifications/qualifications necessary to work for DOD may not be enough to prepare these experts for the job ahead of them.
"One of the biggest threats to the DOD networks is the inability of DOD security professionals to secure the networks," a U.S. Army chief warrant officer assigned to U.S. Army Cyber said. "Many of these security professionals have the required certifications but no understanding how to truly secure the DOD networks and make poor decisions resulting in vulnerable networks."
One main issue is that these experts are merely required to do a lot of book training rather than hands-on training.
"The current requirements aren't turning out people who are prepared," said Jeff Moulton, a senior cyber researcher at the Georgia Tech Research Institute. "The school of hard knocks can teach quite a few lessons, but at DoD that can cost people's lives. Book training is simply not enough."
Another U.S. Army major said that one certification is not enough for an intrusion analyst, infrastructure support, incident responder, auditor and manager because these are five different professions with five completely different skill sets.
The current requirements for cyber security workers was put in place in August 2004 under DOD Directive 8570. It could use an update, especially considering technology and security measures have changed significantly since that time. And the problem is that technology changes so often that it's difficult for DOD to keep up.
"We're rewriting essentially all of the cyber workforce policy, so we are going to have an overarching cyber workforce policy that will include all of the cyber skills including cyber defenders, cyber attackers, malware analysts, all that stuff," said Richard Hale, Deputy Chief Information Officer for DOD Cybersecurity. "Then we will rewrite specific manuals underneath each."
Last month, the Pentagon said it planned to
boost its cyber security unit
five-fold from 900 trips to about 4,900 over the next several years.
This article is over a month old, voting and posting comments is disabled
Outsource pen testing to private firms
2/19/2013 12:14:15 AM
I'd also like to add that government generally moves slow as shit.
I once noticed a major mistake they made in the firewall of several critical systems. Lets just say that once the mistake was pointed out it was obvious and simple to fix. I decided to take on the project of getting them to fix it.
I spoke numerous people in numerous government organizations and the total process to get it resolved took over 6 months. Any normal company could have corrected this inside a couple of days.
At some point in my life I wanted to work for a 3 letter branch of government. It was working with government on this issue that I realized I am happy working for a civilian organization. Being a government employee would tie both hands behind my back in red tape to the point that I really couldn't accomplish anything useful.
As cool as it would be to be a computer security expert for the NSA, DHS, or CIA etc. after you get past the cool title all it would mean is I would have to overdress to sit through meetings where we accomplish nothing every day.
"It looks like the iPhone 4 might be their Vista, and I'm okay with that." -- Microsoft COO Kevin Turner
House Cybersecurity Bill Makes a Comeback, Despite Obama Veto Threat
February 8, 2013, 2:55 PM
Pentagon to Boost Cyber-Security Unit Five-Fold, Eyes Effective Offense
January 28, 2013, 3:34 PM
Report: AT&T Eyeing $40B DirecTV Purchase
May 1, 2014, 8:00 AM
WebOS Class Action Settlement Costs HP $57 Million
April 1, 2014, 10:22 AM
IBM Workers Strike Over Terms of Deal That Will Have Them Working for Lenovo
March 6, 2014, 9:29 AM
Google Picking Up Artificial Intelligence Company "DeepMind" for $400 Million
January 27, 2014, 9:25 AM
Quick Note: Qualcomm Grabs up Palm, IPAQ, and Bitfone Patent Portfolio from HP
January 24, 2014, 9:18 AM
Verizon Buys Intel Media OnCue Cloud TV assets
January 21, 2014, 10:26 AM
Most Popular Articles
Google Launches "Same-day Delivery" Subscription Service for $95/year
October 14, 2014, 10:37 AM
Ireland to Close Loophole Apple and Google Used to Evade EU Taxes
October 13, 2014, 10:45 PM
Report: Next Generation iPad Air, iPad mini to Receive A8X with 2GB of RAM
October 13, 2014, 5:01 PM
Google Announces Android 5.0 “Lollipop”, Nexus 9 Tablet, and Nexus 6 “Phablet”
October 15, 2014, 12:41 PM
FBI Director: Don't Trust Government, But Give It Your Data Without Transparency
October 13, 2014, 7:20 PM
Latest Blog Posts
The Surface Mini That Was Never Released Gets "Hands On" Treatment
Sep 26, 2014, 8:22 AM
ISIS Imposes Ban on Teaching Evolution in Iraq
Sep 17, 2014, 5:22 PM
Space Terrorism is a Looming Threat For the United States
Apr 23, 2014, 7:47 PM
Facebook Aims to Provide Internet to "Every Person in the World" with Drones, Satellites
Apr 1, 2014, 10:20 AM
Retail Mobile Sites Experience Outages in Light of Simplexity's Bankruptcy
Mar 14, 2014, 8:48 AM
More Blog Posts
Copyright 2014 DailyTech LLC. -
Terms, Conditions & Privacy Information