Ridge statement sows confusion on cybersecurity chief

The technology industry stands behind its call for an assistant secretary for cybersecurity in the Homeland Security Department, even as confusion grows over what the department is planning.

The department is backpedaling on Tuesday's comments from Homeland Secretary Secretary Tom Ridge that the cybersecurity position would be elevated to an assistant secretary with responsibility over telecommunications. Homeland Security Spokesman Brian Roehrkasse said Wednesday that the department "believes the position needs to be elevated but is still working out the details and specifics."

"We're in the final stages," he said, doing it "concurrently with reviewing the House intelligence reform legislation" that would elevate the post to an assistant secretary with responsibility for the National Communications System.

Ridge told the National Infrastructure Advisory Council on Tuesday that the department is preparing to make the director of the national cybersecurity division an assistant secretary. That would put cybersecurity on par with the assistant secretary for infrastructure protection, who currently oversees the issue.

Department officials since have told reporters that Ridge misspoke. A department source said Homeland Security actually is leaning toward making the cybersecurity director a deputy assistant secretary but has not ruled out the assistant-secretary level.

But there has been no public announcement recanting Ridge's comments to senior technology executives. That has left industry executives confused because they heard Ridge make his remark publicly but have seen no retraction other than in press reports.

The difference in the level for the cybersecurity post is significant to industry, which sees a deputy assistant secretary as little to no change from the current situation, which recently contributed to the abrupt departure of cybersecurity director Amit Yoran.

Several key industry associations sent a letter to House leaders last week arguing that the assistant-secretary level is the "appropriate solution" to an issue that they said requires greater attention, as part of the war against terrorism. The signers included the Business Software Alliance (BSA), Cyber Security Industry Alliance (CSIA), Information Technology Association of America (ITAA) and TechNet.

CSIA President Paul Kurtz said on Wednesday that he still stands behind the letter.

Without cybersecurity, there is no physical security," said Dexter Ingram, BSA's director of information security policy. "Therefore, the elevation of cyber security within [the department] is critical to America's national security strategy." BSA favors an assistant secretary, he said.

"We need a full-time government official at a sufficiently high level in the Department of Homeland Security focused solely on cyber security, with the clout to take America's information infrastructure off of the table for terrorists," ITAA President Harris Miller said. "We support the creation of an assistant secretary for cyber security." Miller said ITAA was the first organization to call for the creation of a "cybersecurity czar."

Stay up-to-date with federal news alerts and analysis — Sign up for GovExec's email newsletters.
Close [ x ] More from GovExec

Thank you for subscribing to newsletters from GovExec.com.
We think these reports might interest you:

  • Going Agile:Revolutionizing Federal Digital Services Delivery

    Here’s one indication that times have changed: Harriet Tubman is going to be the next face of the twenty dollar bill. Another sign of change? The way in which the federal government arrived at that decision.

  • Cyber Risk Report: Cybercrime Trends from 2016

    In our first half 2016 cyber trends report, SurfWatch Labs threat intelligence analysts noted one key theme – the interconnected nature of cybercrime – and the second half of the year saw organizations continuing to struggle with that reality. The number of potential cyber threats, the pool of already compromised information, and the ease of finding increasingly sophisticated cybercriminal tools continued to snowball throughout the year.

  • Featured Content from RSA Conference: Dissed by NIST

    Learn more about the latest draft of the U.S. National Institute of Standards and Technology guidance document on authentication and lifecycle management.

  • GBC Issue Brief: The Future of 9-1-1

    A Look Into the Next Generation of Emergency Services

  • GBC Survey Report: Securing the Perimeters

    A candid survey on cybersecurity in state and local governments

  • The New IP: Moving Government Agencies Toward the Network of The Future

    Federal IT managers are looking to modernize legacy network infrastructures that are taxed by growing demands from mobile devices, video, vast amounts of data, and more. This issue brief discusses the federal government network landscape, as well as market, financial force drivers for network modernization.

  • eBook: State & Local Cybersecurity

    CenturyLink is committed to helping state and local governments meet their cybersecurity challenges. Towards that end, CenturyLink commissioned a study from the Government Business Council that looked at the perceptions, attitudes and experiences of state and local leaders around the cybersecurity issue. The results were surprising in a number of ways. Learn more about their findings and the ways in which state and local governments can combat cybersecurity threats with this eBook.


When you download a report, your information may be shared with the underwriters of that document.